SHARE 2024 is coming!
This time, at Kansas City, from Aug. 4 to Aug. 8! Check out details here.
Meet mainframe experts and enjoy the events. Experts from Enterprise Networking Solutions team will also deliver great sessions at SHARE Kansas City this time. Check out the technical agenda and get registered.
Note: SHARE 2024 requires additional registration and this post is just for your information.
Let's take a look at the upcoming Enterprise Networking Solutions sessions.
-
TCP/IP Security Controls on z/OS
ID: 10354
Speaker: Chris Meyer (STSM, z/OS Network Security Architect)
Mon Aug 5, 2024 | 9:15 AM - 10:15 AM | TZ: US/Central
This session provides an overview of z/OS Communications Server's security features and offers a roadmap for securing TCP/IP on your z/OS systems. Come learn about TCP/IP-related access controls, IP layer filtering, integrated intrusion detection services, network security protocols and audit trail topics that you can use to lock down TCP/IP access to your systems.
-
z/OS Communications Server Technical Update: Summer 2024 Edition
ID:10183
Speaker: Sam Reynolds (Enterprise Networking Solutions - Architecture, Design, and Strategy), Michael Fitzpatrick (STSM, CPO for Communications Server)
Mon Aug 5, 2024 | 1:15 PM - 2:15 PM | TZ: US/Central
In this session, the speakers will take a look at new features in z/OS Communications Server provided in z/OS 3.1 and via continuous delivery. Features to be covered include:
* Networking support for z/OS containers
* Network security enhancements
* z/OS UNIX syslogd support for secure logging over TCP
* Communications Server exploitation of the IBM Function Registry for z/OS
* ... and more!
-
Current IP routing and connectivity considerations for z/OS TCP/IP
ID: 10188
Speaker: Mike Fox (Enterprise Networking Software Architecture and Strategy)
Mon Aug 5, 2024 | 2:30 PM - 3:30 PM | TZ: US/Central
In this session we will introduce IP routing from a z/OS point of view. Topics covered include basic IP routing concepts including IPv4 and IPv6, ARP, route tables, and static routes. We will also discuss z/OS-specific IP routing concepts including VIPA, OSA redundancy and failover. We also will cover special considerations for a flat layer-2 network.
-
Introduction to z/OS Communications Server
ID: 10198
Speaker: Paul Gartman (Software Engineer), Sam Reynolds (Enterprise Networking Solutions - Architecture, Design, and Strategy),
Tue Aug 6, 2024 | 9:15 AM - 10:15 AM | TZ: US/Central
Are you relatively new to the communications area and want a better understanding of the Communications Server component of z/OS? Have you heard of TCP/IP, SNA, VTAM, APPN, OSA, etc. but wondered what relationship these things have to Communications Server? If so, this presentation is for you!
-
[Collaboration Session] How to Bridge the Mainframe & Networking Security Side Gap
ID: 39315
Speaker: Brian Marshall, Mark Wilson, Chris Meyer (STSM, z/OS Network Security Architect)
Tue Aug 6, 2024 | 10:30 AM - 11:30 AM | TZ: US/Central
This would be a panel from the open system side and the MF side, discussing ways on how to educate and work together on securing their organization.
-
TCP/IP Stack Configuration with Network Configuration Assistant for z/OS
ID: 10191
Speaker: Mike Fox (Enterprise Networking Software Architecture and Strategy), Peter Kassimis (Software Engineer)
Tue Aug 6, 2024 | 10:30 AM - 11:30 AM | TZ: US/Central
In this session we will take a detailed look at the capabilities of the IBM Network Configuration Assistant for z/OS CS to configure a TCP/IP stack including unified sysplex configuration, reusable configuration, dynamic stack reconfiguration, and configuration for disaster recovery and planned outages.
-
50 Years of SNA! VTAM, SNA, and Enterprise Extender: Status and Future
ID: 10199
Speaker: Sam Reynolds (Enterprise Networking Solutions - Architecture, Design, and Strategy)
Tue Aug 6, 2024 | 2:15 PM - 3:15 PM | TZ: US/Central
The Systems Network Architecture (SNA) protocol has been in use in enterprise computing environments for nearly half of a century. Despite rumors of its demise, it is still used to transport a large percentage of mission-critical data around the world. However, it has evolved, and more changes are coming. In this session, the speaker will review some general concepts related to VTAM and the SNA protocol. The current and future viability of SNA will also be discussed.
ID: 10361
Speaker: Chris Meyer (STSM, z/OS Network Security Architect), Navya Ramanjulu (Software Engineer)
Tue Aug 6, 2024 | 2:15 PM - 3:15 PM | TZ: US/Central
IBM z/OS Encryption Readiness Technology (zERT) provides rich crypto discovery capabilities for z/OS TCP/IP and Enterprise Extender connections. zERT data reveals which protocols are being used, which cryptographic algorithms have been selected, what key lengths are involved, and more. This session will provide a short overview of the zERT capabilities and discuss some of the common questions zERT users have raised before, during, and after zERT deployment. Topic areas include: validating zERT configuration, importing and querying data into the zERT Network Analyzer, understanding reasons why sessions might be reported as being unprotected, and more.
-
Sysplex Network Technologies and Considerations
ID: 10194
Speaker: Michael Fitzpatrick (STSM, CPO for Communications Server), Paul Gartman (Software Engineer)
Tue Aug 6, 2024 | 3:30 PM - 4:30 PM | TZ: US/Central
In this session, the speakers will review z/OS Communication Server networking technologies that help maximize the value of the Parallel Sysplex environment. They will discuss enhancements in the area of High Availability and workload balancing, including considerations for enabling these features. Topics will also include:
* Types of virtual IP addresses, when to use them, and how they are helpful in load-balancing workloads across the sysplex
* Best practices recommendations for intra-Sysplex connectivity
* External connectivity into the Sysplex environment
* Techniques for achieving network interface resilience
-
Using Network Configuration Assistant to Configure zERT Policy Enforcement
ID: 10360
Speaker: Peter Kassimis (Software Engineer)
Tue Aug 6, 2024 | 3:30 PM - 4:30 PM | TZ: US/Central
zERT Policy Enforcement allows you to configure policy rules to take actions in real time based on the observed cryptographic attributes of inbound and outbound z/OS TCP connections. As part of this support the Network Configuration Assistant (NCA) provides new, advanced function for configuring zERT policy enforcement. In this presentation you will learn how to get the most out of NCA's zERT support, including quickly and efficiently defining zERT rules and using reusable rules and rule sets to group your zERT rules into logical, hierarchical buckets that are easy to manage and coordinate.
-
Getting the Most Out of OSA and HiperSockets with z/OS Communications Server
ID: 10187
Speaker: Randy Kunkel (STSM, Enterprise Networking Solutions), Myles Pearson (Software Engineer)
Wed Aug 7, 2024 | 7:30 AM - 8:30 AM | TZ: US/Central
The IBM System Z OSA-Express is a critical aspect of your z/OS application workloads. OSA and HiperSockets are used for both SNA and IP connectivity. In this session, we will focus on how z/OS Communications Server uses OSA for IPv4/IPv6 external connectivity based on the Queued Direct IO (QDIO) architecture. The session will cover the operational aspects of OSA as well as configuration options for optimizing both inbound and outbound network traffic. We will also look at how HiperSockets Converged Interface (HSCI) could be an operational benefit to your environment. The focus will be on the z/OS Communications Server software use of OSA. The speaker will also discuss hardware aspects where such aspects are of importance to understanding how the hardware and software combine and cooperate to deliver optimal function and performance.
-
z/OS Communications Server Performance Update
ID: 10195
Speaker: Christopher Nyamful (Performance - z/OS Communication Server), Michael Fitzpatrick (STSM, CPO for Communications Server)
Wed Aug 7, 2024 | 8:45 AM - 9:45 AM | TZ: US/Central
In this session, the speaker will explore selected topics related to the performance of z/OS Communications Server, with a particular focus on recent releases of z/OS Communications Server. Topics to be covered include the network optimizations for workloads utilizing z/OS Container Extensions (zCX), the networking cost of securing TCP connections, networking best practices/recommendations, and more.
Speaker: Sam Reynolds (Enterprise Networking Solutions - Architecture, Design, and Strategy), Todd Valler (z/OS Communications Server - Senior Service Leader)
Wed Aug 7, 2024 | 10:00 AM - 11:00 AM | TZ: US/Central
This session will discuss new technology in Communications Server. Further details will be provided closer to the conference.
-
Modernize and Secure Your Mainframe Networking
ID: 10197
Speaker: Sam Reynolds (Enterprise Networking Solutions - Architecture, Design, and Strategy), Chris Meyer (STSM, z/OS Network Security Architect)
Wed Aug 7, 2024 | 1:15 PM - 2:15 PM | TZ: US/Central
Are you still running classic SNA protocols across your network? Do you still have lots of unencrypted network connections to your mainframe? This session focuses on how to fix some of the most urgent configuration issues that probably harm your network's stability and security. Topics include modernizing SNA connections and z/OS Encryption Readiness Technology (zERT).
-
How Does TLS Cipher Suite Selection Affect z/OS Performance?
ID: 10358
Speaker: Chris Meyer (STSM, z/OS Network Security Architect), Christopher Nyamful (Performance - z/OS Communication Server)
Wed Aug 7, 2024 | 3:45 PM - 4:45 PM | TZ: US/Central
As a z/OS network security administrator you've been asked to increase the security level of your TLS definitions. But when you switched your TLS_ RSA_WITH_AES_256_GCM_SHA384 cipher suite to TLS_DHE_RSA_WITH_AES_256_GCM_SHA384, your CPU consumption went through the roof! So what does it mean to move from RSA key exchange to DHE? Or ECDHE? And what about ECDSA certificates vs. RSA? This session will dive deep into a handful of some of the more popular cipher suites to explore how the suites differ in behavior and how IBM Z hardware crypto capabilities are (or are not) utilized to optimize performance.
-
Safe and Secure File Transfers with z/OS FTP
ID: 10356
Speaker: Navya Ramanjulu (Software Engineer)
Wed Aug 7, 2024 | 5:00 PM - 6:00 PM | TZ: US/Central
FTP is a readily available, convenient, and inexpensive technology for transferring files and data sets between z/OS and virtually any other operating system. However, FTP can be abused if it isn't properly secured. This session will explore the z/OS FTP implementation and discuss a variety of configuration parameters and considerations for securing your z/OS FTP server and traffic.
-
Network Segmentation Mechanisms on z/OS
ID: 10359
Speaker: Chris Meyer (STSM, z/OS Network Security Architect)
Thu Aug 8, 2024 | 8:45 AM - 9:45 AM | TZ: US/Central
The use of network macro- and micro-segmentation to protect and segregate sensitive network traffic has become a hot topic as standards like PCI-DSS have strongly encouraged their use. But with so much virtualization and resource sharing on IBM Z and z/OS, network segmentation can seem like a daunting task. This session covers the various technologies available on z/OS to establish effective network segmentation, even when physical network interfaces are shared across z/OS logical partitions. By the end of the session, you will have a good understanding of the network segmentations tools available to you on z/OS and appropriate use cases for each.
-
Hints and Tips from Communications Server Level 2
ID: 10193
Speaker: Todd Valler (z/OS Communications Server - Senior Service Leader)
Thu Aug 8, 2024 | 12:30 PM - 1:30 PM | TZ: US/Central
This session will provide tips on how to avoid common issues frequently seen by the Communications Server Level 2/3 team.
-
Shared Memory Communications Version 2 - Multiple IP Subnet Support
ID: 10186
Speaker: Randy Kunkel (STSM, Enterprise Networking Solutions), Myles Pearson (Software Engineer)
Thu Aug 8, 2024 | 1:45 PM - 2:45 PM | TZ: US/Central
Shared Memory Communications has been limited to communications within a single IP subnet. SMC Version 2 removes this limitation by providing multiple IP subnet support for both SMC-D and SMC-R. This session will provide a brief introduction and overview of SMCv2, SMC-Dv2, and SMC-Rv2. Additional information will be provided for SMC-Rv2 along with RoCEv2 ("Routable RoCE") including the IBM z16 and RoCE Express3. SMC-Rv2 uses RoCEv2 technology which uses your existing IP topology and IP routes to extend the reach of RDMA thereby expanding the benefits of SMC-R to additional application workloads. In this session you will learn how you can define and control the scope of SMCv2 connection eligibility and how to identify potential use cases that could benefit from the savings in network related CPU cost, reduced latency, and increased throughput. Learn how you can unleash SMCv2 in your enterprise!
-
Configuring Networking for z/OS Container Platform
ID: 10184
Speaker: Michael Fitzpatrick (STSM, CPO for Communications Server), Paul Gartman (Software Engineer)
Thu Aug 8, 2024 | 3:00 PM - 4:00 PM | TZ: US/Central
Networking is a crucial component in the container ecosystem. It provides the ability for containers to connect to and communicate with each other, or to communicate with non-containerized workloads. In this session, you will learn how to configure z/OS Communications Server for z/OS Container Platform (zOSCP). This session will show how zOSCP leverages dynamic VIPAs and Sysplex Distributor to provide communication for containers deployed on z/OS as well as enabling high availability for Kubernetes clusters. This session will also provide a demonstration of how to manage and monitor the network communication used by zOSCP.
-
Guarding the Gates with z/OS IP Packet Filtering
ID: 10364
Speaker: Chris Meyer (STSM, z/OS Network Security Architect)
Thu Aug 8, 2024 | 3:00 PM - 4:00 PM | TZ: US/Central
One of the many powerful security technologies in z/OS Communications Server is IP packet filtering. From blocking unwanted protocols to limiting which outbound TCP connections are permitted, packet filters are a great tool for locking down access to your z/OS systems. Come to this session for an overview of packet filters on z/OS, configuration tips and some practical examples for creating useful filters that just might help you sleep better at night!
Looking forward to your participation!