13:00 - 14:00

14:00 - 14:15

Welcome - Jan Růžička, CESNET 

14:15 - 14:45

Network Security Scanning at CESNET - Jaroslav Svoboda, CESNET
Presentation

14:45 - 15:15

Flow analysis and monitoring detection - Carl Holt and Filip Cerny, Progress

Carl and his colleagues Filip and Ed have been working with GÉANT's SOC for over 10 years assisting with flow analysis and monitoring with tools such as flowmon. Carl will deliver a talk about the challenges they have overcome and how collaboration has delivered new tooling and expansion of existing tools.

Presentation

Flash talks: 

• CESNET NOC - Petr Hanousek, CESNET
  Presentation
• Unsampled Netflow generation at SWITCH - Alexander Gall, SWITCH
  Presentation

Improving identification of R&E network traffic - Tim Chown, Jisc

The scientific network tags (Scitags) project is developing software tools to allow better identification of the owner (community) and purpose (activity) of science traffic by NRENs, other network operators and research communities. Scitags supports marking on a per-packet basis using the IPv6 flow label or per flow using parallel UDP “firefly” packets. The approach is already in use in CERN’s Worldwide Large Hadron Collider Computing Grid (WLCG) infrastructure, but is extensible to other projects and (non-science) communities. 

Presentation

Experiences in DDoS events - Wim Biemolt, SURF

End of Day 1

Group dinner at Andělský Pivovar (self-paid)

Address: Lidická 337/30, 150 00 Praha 5-Smíchov, Czechia

Google maps link

09:15 - 09:45

EuroHPC Update on Hyperconnectivity - Sebastiano Buscaglione, GÉANT

Presentation

Crisis Management Exercise 2026 - Joze Hanc (ARNES) and Charlie van Genuchten (SURF)

The talk will give some details about the exercise that will take place in March 2026, where NRENs will be able to really test their crisis procedures in their own organisations, plus how they work together with NRENs in that crisis. The session will be also an way to get input from SIG-NOC on both the kind of scenario and the communication lines the exercise should try to trigger.

Presentation

Flash Talks:

• Monitoring and Performance for the EuroHPC Network - Will Barber, GÉANT
  Presentation
• Network Monitoring and data sharing in the Nordic countries - Jonas Hagström, SUNET 
  Presentation

• Mobile App Network trAffic Nutrition fActs (MANANA)  - Giuseppe Aceto, UNINA

  End-users of mobile applications hardly know which enterprises and countries are involved in their online activities, and the implied rights and risks. Researchers and regulators need actual usage data to verify data sovereignty compliance. MANANA aims at providing the former with understandable characterisations of infrastructure usage, and the latter with a monitoring system of actual mobile apps usage. The user will be enabled to choose among similar apps and report her data exposure (providing visibility to authorities). The app and the collection server will be released as open-source. MANANA is a project from the Università degli Studi di Napoli Federico II, funded by GÉANT's Innovation Programme.
  
  Presentation

Open discussion - NOC on Cloud (Using M365 from an operational point of view) - Jonny Lundin, SUNET

What are the challenges of using the cloud for the NOCs?  How far have we gone for network monitoring? What happens when the cloud does not work? These and other questions will be the seed for an open discussion with the aim to share information, ideas and expectations around the "NOCs on cloud".

GEANT's operational Experiences Using GAP (Automation system) to deploy services and new router platforms - Will Barber, GÉANT

This talk will give details on GEANT's experiences using GAP to migrate platforms and deploy services, including problems we faced, screen shots of the tool and how it will be used to push base config and update base config and add/delete services. The presentation will also include workarounds used to overcome some deficiencies.

Presentation