15:02 < marita_RIPENCC> Hi everyone, I'm Marita from the RIPE NCC. If you have questions/comments for the presenter and want me to read it out, please state your name/affiliation and I'll go to the mic when questions are called for. Please note that all chat transcripts will be archived and made available to the public on
15:02 < amanda_ncc> It was only down for 10 seconds and it was before the session started luckily. But Job, I think you should for sure reenact it anyways 😛
15:02 < justa> job: That'd be... a very esoteric activity indeed.
15:02 < justa> I approve
15:03 < marita_RIPENCC> Wouter de Vries has begun the presentation "Scalable High-Speed Packet Capture using OpenFlow and Intel DPDK".
15:04 < brian-1213> Hmm, the steno-screens have suddenly gone yellow for some reason?
15:05 < dnshane> It means that they are working group chairs?
15:05 < amanda_ncc> The OPS team is working on it.
15:05 < brian-1213> amanda_ncc: Thank you!
15:07 < Md> how do I contact the webmasters of the meeting web site? my last name gained an extra backslash (thanks PHP!)
15:08 < Leslie> Md: meeting [at] ripe [dot] net
15:08 < dnshane> 'Some people, when confronted with a problem, think, "I know, I'll use threads," and then two they hav erpoblesms.'
15:18 < mino> is the speaker volume in the plenary room too low just for me?
15:19 < mino> i mean… physically in the room, not in streaming 🙂
15:19 < dnshane> I'm like 4 meters from the speaker, so it's fine here. 😉
15:20 < marita_RIPENCC> Wouter de Vries has asked for questions.
15:23 < mino> the signal-to-noise (voice-to-chatter) here is poor, i’ll move somewhere else… 😉
15:23 < marita_RIPENCC> The presentation has ended.
15:23 < dnshane> This room seems to suck in many ways for the plenary. Oh well! :-/
15:23 < marita_RIPENCC> Pavel Odintsov has begun the presentation "FastNetMon – Open Source DDoS Mitigation Toolkit".
15:24 < brian-1213> mino: If people are talking, poke them with sticks.
15:26 < dnshane> UDP makes reflection (and amplification) attacks trivial. No surprise that most DDoS is UDP...
15:26 < Azi-47720> fastnetmon is quite useful
15:38 < dnshane> "Just download this Perl script and run it as root."
15:38 < dnshane> 😉
15:39 < job> i really like fastnetmon
15:39 < Azi-47720> with netmap it's lightning fast if somewhat CPU intensive
15:39 < job> here is another presentation about a fastnetmon deployment
15:40 < dnshane> Seems quite excellent.
15:40 < BECHA> FastNetMon! Proper caPitaliZation is VeryImportAnt
15:40 < marita_RIPENCC> Pavel Odintsov has asked for questions.
15:40 < Azi-47720> default thresholds are a wee bit paranoid, that's about all the issues I've had
15:41 < dnshane> Presumably you dedicate a box for the task, so surely as long as the CPU keeps up with the traffic rate there is no problem?
15:42 < Azi-47720> with netmap it assigns one CPU per interface
15:43 < Azi-47720> I've not yet seen what it looks like at actual 10G of traffic
15:43 < Azi-47720> (per interface)
15:44 < Azi-47720> mind you, dropped/un-analysed packets should not necessarily be a problem with a DDoS
15:44 < marita_RIPENCC> The presentation has ended.
15:44 < dnshane> Right, the only failure mode is where your normal traffic is close to line rate, in which case you want more bandwidth anyway. 😛
15:45 < marita_RIPENCC> The NRO NC Candidates will now introduce themselves.
15:46 < mickod-2110> taht was a great presentation and a great project
15:46 < mickod-2110> bravo pavel
15:48 < dnshane> Gah, I've been outed!
15:53 < marita_RIPENCC> Vicente De Luca has begun the presentation "Detecting and Mitigating DDoS: A FastNetMon Use Case”
15:58 < dnshane> Note to future presenters: green text on white is almost impossible to see in the room.
15:58 < mino> reading these slides on these projectors is like taking an eye test 🙂
15:58 < dnshane> I'm following along with the PDF from the meeting web site.
15:58 < Azi-47720> at least I now know I'm not colourblind
15:59 < brian-1213> dnshane: I was just about to say. It's rather tricksy.
15:59 < mino> @Azi-47720 lol
16:03 < marita_RIPENCC> Vicente De Luca has asked for questions.
16:05 < marita_RIPENCC> The presentation has ended.
16:05 < marita_RIPENCC> Thomas Weible has begun the presentation “The 101 of 100G Interoperability”
16:13 < marita_RIPENCC> Thomas Weible has asked for questions.
16:14 < marita_RIPENCC> The presentation has ended.
16:16 < marita_RIPENCC> Thank you Brian. 🙂
16:16 < marita_RIPENCC> This session has now ended.