Flowmon onboarding

Mais informações

Functional Areas in a business

por Tomas Parkes

Production Planning

por Gert Struyven

Tim Hortons

por Joshua Wong

CHAPTHER 5: CORE MUSCLES

por amin ashraf

Flowmon onboarding

Feedback

Troubleshooting

Low performance SATA module in kernel, limits KVM performance

Implementation stays with profiles as of now

Everyone wants...

ISP

Stream processing resonates really well

External IP services functionality

NOC uses

Views, RESTful API cookbooks?

DNS names, IP addresses per-view

Monitoring BGP

Mobile App

No alerting history

NTOP-NG style flows and traffic representation

Enterprise

List of ADS and DDoS detection methods

Alerting: does not show what actually caused the alert

User identity mapping

Can't set up with MS AD

Complicated options

Directions in/out

November update

Other administrative

A1 missing

Salesforce

Mails from all PoCs

2 days of administration each month

Colleagues

Colleagues at partners: self-sufficiency is yet ahead for them

Almost no interaction with others

Very good, on-the-point help from HQ presales; rarely needed

Very good relations with Laszlo, is a pro

Work

Administration overhead tolerable

Really enjoy what we are doing

Home office turned out to be really good

Main things to do

We do need the success stories

Can not let PoCs stand alone at this moment

Developed new methods

Assesment, sizing need my input

How to conduct: ineffective existing habits, needed to redo

Agreement on key points

1 st preso

talk about them

Stories

Educate partners

Revenue

Trying to help sales with own contacts

Existig PoCs need saving

Verdict: arrived late

Overview

November: try to help with revenue

October: own PoCs, partner education

Sept: partners, customers

Aug: onboarding, tech training

On-the-job

Tasks

United Telecom

DDoS PoC coming with 3T Collector

Looking to provide value added services for select customers

Billing

4x 10G uplink

Cisco and Arista routers

Arista: sFlow

Cisco: NetFlow

~130k fpm

Business

4x 10G, 130 k fpm

DDoS Defender module

Collector 3TB

Are we suitable for multitenant services as managed?

WanGuard

Mitigation?

No local support

DiData

Tarr PoC

Tarr Kft

Two systems are running in parallel

Flowmon ADS

Need to present

Traffic Recorder

Present in Hungarian

Config check

Can we get to 30 sec alerting time

Let us see if everything is properly set up

E.g. proxy settings

110-120k users

New looks requested

DDoS Defender case

2018.08.24

Ready to listen to BGP updates

NCS 5k

Juniper type commits

IPV4 IPV6 addresses separate processing

How do we log in

Very positive feedback on vendor interaction

NMHH onsite only

Budapest airport 2 days, very positive feedback

Probe under sale for ADS

What happens if licenses expire? NFR up to 2021

NFR licenses on demo hw

Perpetual?

30 days' licenses

Posta 1 VLAN

KSH probe

SZTE case

Customer knowing more about the filesystem than the partner

User identity cookbook

APM problems

MPLS decapsulation

Probe in BIX

2018.08.17

Profiles

15-20 sources

30-40 profiles

Roadmap

REST API

Business use

General

Critique

Mobile app

Zoltan Gal

Jozsef Fodor

RESTMan

Had errors

Tested REST API

tech

mgmt

3rd of 4th in municipal services

Ahead of Digi

Multiple 10G

10x ASR 9k

Local peering

BIX

NFSen

Develpoment costs a ton of $

5min

Tamás Makláry

Development roadmap check

Will show the new dashboard

ACL based response

Tarr did not report back

Resources for the virtual collector

Bring the probe to BIX and mirror the peering point

Check with what is available on probe 10G

Call Vojta

2018.08.23 DDoS call with Lubos Lunter

Points discussed, of note

Reference visit, call

Orange

UPC

O2, MSSP

Fibers, trains

Ask Pavel

Testing

Available on support portal

Hping based machine

Mitigation strategies tiered

Already released in beta

ADS

Review ADS detection methods

Sampled flows could be limiting

Triggered packet captures

Definitions

As subnets

Way to differentiate between customers

Subject to change, more manual config

As AS numbers

sFlow devices as sources

We lose half the methods if no TCP flags

Discuss with PreSales

OOB mitigation is a value

CD Telematika

ADS inclusion

Security part reselled

Cyso case

Aspire case

Multitenancy

Create profile

Try to limit access to Flowmon boxes

Reports, information

Mitigation strategy

Do not compare to Arbor!

30s protected segments subject to further sizing

Premilinary q list

Questions

Clear with Jiri if parent profile for DDoS profile can be type shadow

Working with colleagues & exp sharing

cases

@support.flowmon

Hands on

Mitigation as a service

Branding

Multi-tenancy

Realistic amount of tenants at this moment?

Channels, views

Sets of profiles

ADS addon

Are carriers interested?

Sizing

Experience with 5 min batch, 30 sec batch, stream?

Data retention times

DDoS defender per 10 Gbps

ADS per 5k fps

16 vCores, 24 GB RAM

Roadmap items

Who to talk to

Resources

Prof services

"I need this and that view"

REST API?

Any guidelines/experiences?

Predetermined prof services according to specifications

T&M

Any key features

Mitigation via existing devices

IOS XR

Stream processing

Others

Decorate office

Switch

Chair

Desk

HW

Post, send documents to RSM

Update LinkedIn

Take car to service

Add expenses sheets

Add mileage

Visit RSM

Events

Flowmon KC

Quarterly

Business breakfast

Webinars

Flowmon channel on YouTube

Topics

Why would I use?

DDoS

NPMD

APM

ADS security use cases

What do I need for Flowmon?

What can we do with flowmon?

Enduser training

Flowmon marketing helps

Regular updates

40-50 min

ITBN

Do we need to register?

On the crowd presentation

Arpi, Tamas Szelinger; demo

Both days

Tech demo

Small groups

We can approve ITBN registrations

VIP tickets

1 presentation, Roman Cupka

Supporters with ALEF, together with F5

Exp. sharing bi-weekly

2018.08.14.

1st tasks

Get to know pricing, pricefile, quotation

Upcoming schedule

Partners

99999

Delta

Dimension Data

Distri

Discuss immediate activities with Laszlo

CRM

ZOHO account

Visit Alef

Return to topics

Discuss support, questions, activities

Engineering services

Problematic PoCs

KBC

Discuss use of their infrastructure

Office use

Printing

Scanning

HR

Driving in the Czech Republic

First Aid Training

Fire protection

Occupational Safety

Finalize settings, signature

Signed contract

Finance

Contact RSM for documents

Call Marek

Shell card

Issues with forward payment

Do we keep bills

Issues to discuss

Bills with backward payment e.g. mobile

Internet and mobile tariff, i.e. parking

Docking station WD15

Will be discussed with Pavel

How do we do preapproval

Acceptable use guidelines

Stationery (folders, pens, papers)

Commute

Private

Public transportation

Discuss with RSM

Mileage sheet

Costs sheet

VAT bill and taxes

Currency conversion (?)

Update RSM every month

Tech

Infrastructure

Possible use of sandbox

VPN

DDoS lab

Licensing portal

Folders

So far

Enrolled to the sept 10. training

Waiting for confirmation

Competitive training/overview with Artur

Looked at installation first steps on a Collector

Migrate disk image

Update

Install packages

Spent a day with Michal Vaverka

Spent a day with Vojtech Hodes

Training

Technical Engineer certification

Presales

Sales

Hardware

Say thanks, great notebook

Docking station

Discuss pruchase

Keyboard

Found own

Purchase locally

Display

Ask if someone can pick it up

Take one from HQ, september