Loren Data's SAM Daily™

 fbodaily.com
Home Today's SAM Search Archives Numbered Notes CBD Archives Subscribe
FBO DAILY - FEDBIZOPPS ISSUE OF DECEMBER 06, 2013 FBO #4395
SOURCES SOUGHT

D -- Packet Capture

Notice Date
12/4/2013
 
Notice Type
Sources Sought
 
NAICS
334118 — Computer Terminal and Other Computer Peripheral Equipment Manufacturing
 
Contracting Office
Social Security Administration, Office of Budget, Finance, and Management, Office of Acquisition and Grants, 1st Floor, Rear Entrance, 7111 Security Blvd., Baltimore, Maryland, 21244
 
ZIP Code
21244
 
Solicitation Number
SSA-RFI-14-672N2
 
Point of Contact
Madeline R. Bryant, Phone: 4109659464
 
E-Mail Address
Madeline.Bryant@ssa.gov
(Madeline.Bryant@ssa.gov)
 
Small Business Set-Aside
N/A
 
Description
Packet Capture with Application and Network Performance Monitoring Solution The Social Security Administration (SSA), Office of Telecommunications and Systems Operations (OTSO) is now in the process of preparing for its new datacenter, the Network Support Center (NSC). The Division of Network Engineering (DNE) Network Management Branch (NMB) has been task with delivering a solution that will provide Network Packet Capture with Application and Network Performance Monitoring for the NSC. SSA is seeking sources that will provide a Commercial Off-the-Shelf (COTS) product(s) to address these needs and the detailed qualifications outlined in this RFI. The agency's minimum requirements for this solution are as follows: 1.0 General Requirements Solution shall: a) Provide Application Performance Monitoring (APM), Network Performance Monitoring (NPM), Network Behavior Anomaly Detection (NBAD), and Retrospective Packet Capture Analysis capabilities in an integrated architecture b) Provide one centralized web based GUI or reporting interface for displaying all APM, NPM, and NBAD metrics c) Provide ability from centralized GUI to access Network Packet Captures and launch an integrated Packet Analyzer tool d) Provide open access to all stored data with ability to extract data to external databases via SQL, API, and/or ODBC e) Support High Availability (HA) or Fault-tolerance architectures f) Support for IPv6 for both reporting and system management g) Retain at least one year of APM and NPM historic data h) Provide automated grouping and seeding of devices, network subnets, and network interfaces from multiple external authoritative sources (e.g. CMDB) i) Provide ability to customize data roll-up for historical reporting and storage j) Comply with Personal Identity Verification (PIV) standards and support LDAP or AD for user authentication k) SNMP v1, v2, and v3 for device polling l) Scalability for 10,000 network devices m) Multi-vendor Routers, Switches, Application Switches, Firewalls, WAN Optimizers, and IP phones 2.0 Packet Capture Requirements Solution shall support: a) Deep Packet Capture, Packet Indexing, Inspection, Analysis, and Reporting of dual stack IPv4 and IPv6 data. b) A minimum of 40 concurrent users performing data collection, data reporting, and analysis, with no impact to the Packet Capture and Data Storage Appliances c) Deliver to a minimum of 40 concurrent users, extremely fast filtered data trace query results (within seconds) and extremely fast (within seconds) write data capture trace to file (.PCAP,.CAP) as a local or network share file, even during periods of peak data capture ingest. d) A minimum 5 days of packet storage receiving 13 TB of packet data per day e) Receiving packets from 1 Gigabit, 10 Gigabit (10 GbE), and Fiber Channel connections f) Integrated enterprise-class layer 7, real time capture, and analytics capability with GUI infrastructure capable of investigating, reporting, and alerting functionality g) API integration with ArcSight, Splunk, SourceFire, and SIEM Application reporting services h) 10 Gbps sustained line rate network packet capture without packet loss i) Minimum 32 TB of packet storage for retrospective analysis j) De-duplications capabilities of network packets from multiple SPANs k) Offloading packets to Storage Area Network (SAN) l) Packet reconstruction in Analyzer 3.0 APM Requirements Solution shall: a) Perform end-to-end layer-7 detailed APM for web and non-web based applications b) Provide dynamic and automated application baselining and performance thresholds c) Provide de-duplication of all packets from multiple data feeds (2:1 ratio minimum) d) Report on IPv4 and IPv6 networks and application traffic separately with option for aggregate reporting for application data e) Present data broken-down by networks, applications, and servers f) Provide auto-discovery and dependency mapping for applications/services g) Report response time metrics by: Server Reponses Time, Network Round Trip Time, Data, and Retransmission Delay h) Report session data by: Connection Setup Time, Number of Sessions, Unfulfilled Sessions, Session Times, and Response Size i) Report user impact by: Packet Loss, User Throughput, End User Perspective j) Provide automated and actionable events generated based on application performance thresholds (e.g. drill down into packet capture, trace route, poll server or network device for resource info) k) Provide ability to drill into packet captures from web interface for periods of degraded application performance l) Reporting of MAC address, switch, and switch port info for each server/host IP address discovered by system m) Database scalability for 1,000+ applications servers; 20,000+ /24 network subnets 4.0 NPM Requirements Solution shall provide: a) NetFlow based reporting of traffic consuming network resources b) Support for NetFlow v5, NetFlow v9, IPFIX, J-Flow, C-Flow, and S-Flow c) Custom reporting on Top ‘n' interfaces, protocols/applications, host, conversations, flows, and TOS/QOS d) Presentation of traffic metrics by: Rate, Volume, and Utilization e) Capacity Planning capabilities by interface f) Retention of raw NetFlow records for at least six months and provide raw NetFlow reporting capabilities g) De-duplication of all NetFlow received from multiple devices or interfaces (2:1 ratio minimum) h) Ability to filter and forward/replicate received NetFlow to another vendor independent collector (e.g. IDS, IPS, Anomaly Detection‎ System, NFA) i) Custom application definitions or mapping by: subnet, TOS/QOS, IP, and TCP/UDP Port j) Real-time NetFlow data at one-minute granularity k) Ability to aggregate network interfaces into one local interface l) NetFlow collection of 15 million total flows per minute m) Process all NetFlow received without loss of data or degradation of performance of the reporting and alerting features of the system 5.0 NBAD Requirements Solution shall: a) Provide the ability to identify potentially malicious or abnormal network activity reflected within network flows through the integration of a behavioral anomaly component as well as the ability to match network flows against inherent, continuously updated security intelligence feeds (blacklists) from established industry sources. b) Generate alerts or events and display in centralized GUI or reporting interface c) Provide ability to export alerts or events via Syslog or SNMP Traps d) Provide ability to inspect and process every flow (NetFlow or Packets) received by system e) Perform de-duplication of flows and event correlation (2:1 ratio minimum) 6.0 Deployment Requirements Solution shall: a) Deploy using either VM OVF package, Physical Appliance, or Software Package (MS Server or RHEL support) b) Physical Appliance Requirements (if solution calls for): a. Redundant power supply and other key hardware components b. 1000/10000 Ethernet support c. 120/220v AC 3-phase support d. Rack-mountable in standard 19" rack mounts e. MS Server 2008/2012 or Linux only 7.0 Support Requirements a) Provide near 24x7x365 support services b) Provide U.S. based support c) Upgrades and software revision included in maintenance and support Interested sources that believe they have the bona fide capability to offer a technically compliant product should submit a detailed statement of their solution via email to Madeline Bryant, at Madeline.Bryant@ssa.gov no later than December 19, 2013 5:00 PM EST. Facsimile responses are not acceptable. Please reference SSA-RFI-14-672N2 in the email subject line. The file size limitation for e-mail attachments is 5 megabytes. Detailed responses to each of the above requirements (with substantiating documentation) are required. SSA will not consider simple marketing information or incomplete responses. SSA will not consider reference to vendor web sites as a valid response. Respondents should indicate whether their product is available on GSA Federal Supply Schedules or any other Government-wide Agency Contract (GWAC). ***Any questions regarding this RFI should be sent to Madeline.Bryant@ssa.gov no later than December 9, 2013 5:00 PM EST. **** Synopsis Terms and Conditions: • This is a sources sought announcement, a market survey for written information only. • This is not a solicitation announcement for proposals and the Government will not award a contract from this announcement. • The Government will not reimburse for any costs associated with providing information in response to this announcement or any follow-up information requests. • The Government will not accept any telephone calls, or requests for a bid package or solicitation. There is no bid package or solicitation. • In order to protect the procurement integrity of any future procurement, if any, that may arise from this announcement; the Government will not give information regarding the technical point of contact. • The Government will not make appointments for presentations. This synopsis is for planning purposes only, not a commitment by the Government. • The Government will use responses to this sources sought/market research notice to make appropriate acquisition decisions.
 
Web Link
FBO.gov Permalink
(https://www.fbo.gov/spg/SSA/DCFIAM/OAG/SSA-RFI-14-672N2 /listing.html)
 
Place of Performance
Address: 6021 Security Blvd, Baltimore, Maryland, 21235, United States
Zip Code: 21235
 
Record
SN03245429-W 20131206/131204234346-59735995362ef035f142c2e5a332069b (fbodaily.com)
 
Source
FedBizOpps Link to This Notice
(may not be valid after Archive Date)
FSG Index  |  This Issue's Index  |  Today's FBO Daily Index Page |
ECGrid: EDI VAN Interconnect ECGridOS: EDI Web Services Interconnect API Government Data Publications CBDDisk Subscribers
 Privacy Policy  Jenny in Wanderland!  © 1994-2024, Loren Data Corp.