On 06/01/2018 02:12 AM, Cameron Beattie wrote:
Has any progress been made on a collaborative effort to address the TICSA requirements?
I'm not sure if this will help, but we have a new project for collecting flow data from network devices. The flows are put into an Elasticsearch database and examined using Grafana. https://wiki.opennms.org/wiki/DevProjects/Drift This was included in last week's Horizon 22 release. This could be used to track meta-data (who is talking to whom using which protocol and transferring how much data) which I assume would help meet TICSA requirements. More info here: https://docs.opennms.org/opennms/branches/develop/guide-admin/guide-admin.ht... We have production systems collecting 100K flows/sec with the ability to collect up to 250K flows/sec depending on the size of the Elasticsearch cluster. Dunno if this helps but since OpenNMS is 100% free software I wanted to let folks know about it. -T -- Tarus BALOG, Maintainer Main: +1 919 533 0160 The OpenNMS Group, Inc. Fax: +1 773 345 3645 Email: tarus(a)opennms.org URL: http://www.opennms.org PGP Key Fingerprint: AFA1 DDA2 24B0 4B61 8D76 9CC7 91F4 79A0 FBF2 DC21