Let me brief you about our running structure. I think that would be better. Please. Khadem ভাই, you can hear me, right? You need to set this before this. Yes brother, I can hear you. No problem, brother. Brother, what has been done with our network here is that we have taken the internet connection from two ISPs, yes. Mazar ভাই, I'm just interrupting you for a moment, okay? It might be easier for you to explain then. It is that, do we have any logical diagram? Any logical or physical network diagram? Diagram, we have a diagram. I can give you the diagram. Right now... At this level, I mean, even a high-level one would be helpful to understand for now. Yes, I, let me brief you a bit. Okay, okay, please, please, please, please. We have taken the internet connection from two ISPs, yes. From the primary ISP, we have two physical connectivities. Yes, which is configured for auto-failover, yes. We don't have any load balancing, no bandwidth load balancing, but auto-failover is configured. If one of the physical connectivities of our primary ISP goes down, we bring it back up within an hour or two. In that case, it runs on the secondary backup, okay? Okay. Somehow, if for any reason both fibers of the primary ISP are down or physically down, in that case, our second ISP, which is our backup ISP, automatically starts running. Start. The automatic failover is configured this way. Yes. Now, if for some reason, say, since we have a DNS entry for this, domain, domain, it works with this domain. Our domain, the ZARP's domain, has an entry on both our ISPs. As a result, if for any reason, just the internet of any ISP goes down, we can quickly recover it. This is how it is actually done, yes. Another thing is, in our setup, there's a physical firewall for the LAN, between the LAN and the other part, specifically for ZARP. The systems go through that firewall. Okay. Brother, do we have any segregation at the LAN level? At the LAN level? There will be two. Is there segregation? Anything like department-wise VLANs? No, no, no. Our entire ZARP system, our ERP system, the total system is on a completely separate network. We don't have any users there. Okay. That's a separate part. That's totally separate. Okay, do we have a separate zone like a DMZ on the firewall, or a separate entry? By separate zone, I mean we have a separate device itself, totally separate. So you've separated the physical devices? Yes, yes. My ZARP is separate from my physical... our local users, the computer users in the office, they go through a separate internet. Okay, so if I clarify this in my own way, it is that you've brought in a separate network for your system, and a separate network for your users. In that case, your devices, you have more devices, but you need more devices. I need two extra devices. The normal users get the normal internet too. I haven't added them to the firewall. They are not on the firewall, right? No, no, they are not on the firewall. Only your ZARP system is on the physical firewall. I understand. Okay. So you've completely separated the physical part. Yes, the physical part is separate, yes, yes. I understand. Okay. Yes, brother. What devices are we using here, brother? I didn't get that, brother. What devices are we using? For routing, we are using a MikroTik CCR. Which CCR series is it? CCR, I'm telling you in a moment. For ZARP, we are using a CCR 1009. 1009. 7G? Yes, 7G. That one is running. And the firewall running is a 440 PA, Palo Alto. 440A? Yes, 440A. Okay. And for the users? For the users, MikroTik is running, two of them. MikroTik is running as the gateway. That one is an RB 1100 AHx. Okay, okay, RB 1100... one is that, and another one is... I'll give it to you. The other one is... Okay, whatever, no problem. Regarding the users for now... It's of this level, of that level, yes. The 1100 series, yes, I understand. From the RB series. Yes. Okay. That's not a problem. Okay. Now, brother, Yes. Here, in which area, if we say modification or if we say upgradation, I mean what kind of things are you thinking about? No, actually, basically regarding the network, I don't have any plans for upgradation for now. Because my network, what we basically look at is whether the security level is okay and if there are any interruptions. For us, these are the two things to look at, okay? Okay, okay, fine. Okay brother, another thing here is about your branches, the branches you have, how are these branches connected? The branches are connected through... they come through the internet. They are connected via the internet, all of them are connected using MikroTik routers. So your full system goes to the internet via DNS. Yes, our process is to come to the internet via DNS. It was configured that way for it. Okay, in that case, you don't have any dependency on the branches. No, no, there's no dependency on the branches. My total system is this ZARP system. Okay. Your internet, through the internet, any user from anywhere in the world... I see, so you have made it directly internet-facing. Yes, yes. Here, here your... The router has destination NAT configured. None of our servers have a real IP, no public IP. I understand. The real IP is only on my router, yes. I understand. From here, it goes through port forwarding and destination NAT. It goes, hmm. And if modification is needed, you can suggest if anything else is required beyond this. In my opinion, from what I've assessed, this should be enough. Still, your advice is needed if further upgrades... Yes, that's right. Khadem ভাই, are you listening? Hello. Yes, Khadem. Okay, Khadem probably... no, he's not disconnected, I can see. He seems to be connected. Two minutes, he's coming in about two minutes. Okay, okay, sure. Okay, fine. He's coming in two minutes. Has it gone into minus temperatures over there? It's minus temperatures here now, yes. It hasn't gone yet, I mean it's not fully minus, but the temperature is very low. Okay. It will go, I mean wait, let me check and tell you the temperature. It's 12 degrees now. 12 degrees, right? Okay. That's not very much. During the day. But at night it goes into minus. It will go into minus at night. Okay. At night it goes into minus. It stays at minus one, two, three. Brother, sorry, I faced a small interruption. No problem, Khadem ভাই. Yes. Someone came for the rent. Okay. Brother, I just want to know if we are running only one system or are there plans to run multiple systems? Actually, Rate bhai can answer this better. How so? I mean, will the system run on a single one or are there plans to make it multiple? This is actually... Do you want to know about any other system besides ZARP, outside of ZARP? Yes, yes brother, yes. For now, we are thinking about ZARP fully. We are not thinking about anything outside of ZARP for now. Because we are creating an integrated ERP, so all modules will be integrated into ZARP. Everything will be integrated here. Okay, fine. Besides that, we have other systems for other concerns. Which are not related to ZARP. Are those hosted from here or hosted somewhere else? No, not hosted from here. Not hosted from here? No, no, no. Are those on some other cloud or some other web? They are all individual systems. Some are desktop-based, some are cloud-based. Those are separate systems. Separate systems. Are there any plans to integrate those here in the future? No, no, no. Not Rahib's, those are integrated. Not with this one, not with ZARP. Not with ZARP, but they are on this network. Okay, okay, okay. So not with this one, it's somewhere else, right? No, it's here. It's here. The network is separated. Okay, I understand. Okay, I understand. It's separate, the two are separated. Okay. Okay, no problem. Then, brother, it seems to me that the network we have is stable. If it's for one system, it's more than enough. Nothing more is needed. Because it's servicing one system. And as Mazar bhai said, it's completely dedicated and separate for our users, I mean separated from the device level. So there are no complexities here. And regarding the system, what is the state of our server-end infrastructure? And how are we doing it here, is it done through virtualization or on a physical server? If I could know the details of this, it would probably be easier to understand. Mazar bhai, what is this? This, this is actually not in my hands. Because this was done by the DBA from Mononsoft, so he can say it better. He... Okay. Russell bhai, anything about this...? My part is actually up to the firewall. Okay, okay, I understand. No problem. What I actually wanted to know is, is the dependency and separation done at the physical server level? Or if we talk about load balancing or hosting, is it at the physical server level or on top of virtualization? No, yes, Raju can tell us about this, our Rakibul Islam. I think it's a physical Linux, not physical, I mean not physical... not virtualization. Not virtualization. It seems they are accessing the Linux system directly. No no brother, I understand they are accessing Linux directly. Is it on bare metal or through virtualization? That's what I need to know. Are they doing it directly on bare metal or are they virtualizing it first? I don't think they are virtualizing, Khadem. Why? When I saw their servers, they are running a separate service for each server. Each one an individual service, right? They are running individual services. So if you run an individual service on each server, it's not supposed to be virtualization. No, it should be on bare metal. Okay. I've spoken with Mr. Raju, I will bring him on a call again and ask for these details now. Since we need to do the load balancing and other things, I will contact him and find out the details. I am continuously talking with them, with Raju bhai. I mean, I just want to mention here, brother, that if we... what should I say, load balancing, sorry not load balancing, if I stay on bare metal, my cost becomes very high on bare metal. Because for each individual service, I need an individual physical server. And if I move to virtualization, I can cluster four or five servers and from there, I can create VMs infinitely based on my available resources. I can create separate VMs for separate services. In that case, I can also do load balancing there, and I can also keep backup servers for individual services. This can be done simply. Now, which plan the brothers will proceed with, that you... I think we will go with that, with virtualization. For now, they are on physical. So, our plan for the future will be... the main thing is cost minimization. Now, to minimize cost, we will do whatever is necessary. This is our first target. And safely. Another thing is safely. If we can't do it safely, if there are interruptions, if the business suffers, then it will be a huge loss. So, keeping these things in mind, we will suggest to them, we will suggest both options, and we will present both to them that we want to do this, but if we do this, these are the advantages, and these are the disadvantages. If we want to do this one, these are the advantages or these are the disadvantages. Okay? Then we will choose one, whatever they suggest, we will do that. But we will present both things to them. Okay, I understand. Okay, and brother, I think you know what they have on the front end, and I know the back end is Oracle. What is the front end made with? For the front end, they used Vue.js. They used Vue.js, right? Okay brother, these two services, my front end and back end, are they running from two separate services? Meaning from separate physical servers? Like the application on one server, the database on another, or is everything inside one server? From two servers. No, no, maybe from two servers. From two servers. Meaning the database is on a separate server, the application is separate. The web is also separate, everything from separate servers. Yes, yes, they are separated. Okay, they've done a very good thing here. But there are some complications here. Complications that I have already discussed with Rasel bhai. And Ross and I have had many meetings about this already. We had a meeting today as well, about their workflow and everything. So what we want here is, we want to take a copy of their total application onto our server. Okay? So after taking the copy we... They have a total of 300 GB of space for their database and other things. What we will do after taking it is, we will save a copy of their current Oracle database to another database. So that if there is any problem with Oracle, our total project remains safe. Okay, and brother, is Oracle paid or? No. That's why our risk is higher here. Which version? Which version of the unlicensed one? I haven't asked for the version. Maybe if I ask, they will tell me. Mazar bhai, can you say? Any idea? No, I can't say. I have no idea. Idea... okay, fine, no problem. I'll find out from them. For now, your job will be to prepare a space on our server so they can copy the application and we can, say, save the database first. Because this is our first priority for saving. Saving the database. So that on another, on another database, the one we will use for our AI, we can start converting it to a high-bandwidth database like that. Otherwise, we'll see that if there's a mishap at any moment, we will be in deep trouble. And JMI will be in deep trouble. Okay. In that case, the backups are coming regularly, right? So from there, taking a backup file... Yes, the backup is coming regularly. But as I said, even if the backup comes, it's unlicensed now. Now, say, when we reshuffle it, there are some complexities, some gaslighting, many things can happen. At this stage, if we don't save the database first, don't save the total work, problems can occur at various layers. So we won't let that happen. We will save the work first. Then we will do what needs to be done, no problem. So that the business is not harmed. Do you understand? Yes, I understand, brother. Okay, fine. That can be done. I just need to get the server ready and upload it there. Yes, yes, yes. Okay then. Whatever support is needed from Rasel bhai, we will get it, Inshallah. No problems there. Okay, Inshallah, then there's no problem. Rasel bhai is here, Mazar bhai is here. Mazar bhai, so, in the future or in the near future, the plan that we have, the new office you are setting up... How are you planning for that, the layering, have any plans been made for these things? By wiring? No, not wiring, I mean our network layers... For example, will you go under the floor or above the ceiling for the networking infrastructure? This is actually under construction, so we have more or less planned that it will go over the top. Are you doing a false ceiling? Yes, we are doing a false ceiling. We will try to do it that way through the false ceiling. Still, we will show it to a vendor, our LAN vendor. We will do it as they suggest. But our plan is to do it from the top. Okay, if you do a false ceiling, you can go from the top. The plan is to take it over the false ceiling. Yes, yes, yes. And for the data center too, we want to get it done by a vendor, instead of doing it ourselves. Of course. I mean the data center, our data center will also be shifted. It's on this floor, that brother has seen it, we will move to another floor. Okay, okay, okay. On this floor... then we decided that we will get it done that way through a vendor. Regarding this, yes. That's the plan, we've kept that plan. Now let's see what the management says. My physical firewall is running as security. If you want to suggest any other cybersecurity or apps, you can do that. If you feel it's necessary. No, for now, since there's a firewall, we can go for a WAF later if we want. But it will depend on what the management actually thinks. Exactly. It's running like this. Yes, exactly, because just saying we need a WAF won't work. Whether the management will accept the investment required for a WAF... So these are also things to know. So for now, since there's a firewall... and brother, are there any plans to bring the users under any restrictions? By restrictions, I mean for monitoring? Regarding user restrictions, our users here are normally normal users. Yes, those who use the ERP, they only access the ERP and browse the internet. For internet browsing, we have a policy about who gets what level of access, and based on that policy, we restrict them. For example, who won't get Facebook, who will get Facebook, who won't get YouTube, who will get YouTube, these kinds of restrictions are there on our router. This is done from the router. It's done from the router. From MikroTik, I mean you've done everything using Layer 7, right? Yes, I've done it with Layer 7. In some places, I've done it with filters. It's running like this. It's running like this, right? Yes, yes. We don't have that much... you know. I mean, we've made a policy on who will get what at which level, and we provide it accordingly. It's given that way. It's like that. So, has anything been done for central monitoring? For monitoring, I'm here, I do it. No, no, no, any dashboard type of thing, that type of central monitoring? No, no, no monitoring dashboard like that... It hasn't been done yet. It hasn't been done there. By monitoring, do you mean monitoring the users' web access? I mean, everything overall. Like, what is the status of my network connectivity, then my... no, no, no, for monitoring like that, I think we'll have to go for cybersecurity. Then there are my servers, the utilization or usage of these servers, has anything been done to monitor that? No, no, not on the server. This... he can say this better, as I said, the DBA can tell you everything related to the server. Okay, okay. I'll have to talk to that brother about those things. If you talk to him, you'll be more clear. No, I understood the network level, that it's very critical here. Okay, something is done because we receive emails. If the CPU goes a bit high, we get an email. Something must be done. It's done, yes, then it's done. If an email comes. We get emails here, if any interface goes down, an email comes. I think that is configured. Maybe you don't know. No, if it wasn't done, you wouldn't get emails, brother. I wouldn't get emails, so that's done, it's done. It must be done. Okay brother, then you please talk to Raju bhai. Talk to him and see what the situation is. What's the situation with those matters, okay? Hopefully, if you can find that out, it will be easier for you to plan which way to go. And as you said, for keeping a database backup or application backup, they already have the backup file. You can upload that backup file. You don't have anything else to ask, right? No, nothing at the network level. This isn't really a major thing. It's a very simple network. The critical part is just restricting my system with a firewall or monitoring the firewall. Mazar bhai, I'm right, aren't I? Yes, yes, yes. But in the future, the total service or things that will be maintained, there we have to consider everything from total security, who can join, who cannot join, we have to keep these things in mind, actually. When our thing happens, and on which port they will join, who will join on which port, we have to identify these things in the future. Because whenever there is a large network, there will be a risk of cyberattacks. So we have to identify those things, that if a dedicated port is given to someone who will specifically enter the server, they should enter through that dedicated port, not from anywhere else. All these things. Okay, fine, I... Cyber... These things are already configured on our router. Still, what I feel, my impression is that when it gets bigger, going towards cybersecurity will make it even more secure. It will be secure, right. Brother Mazar bhai is on the exact correct point. From my router, it enters through that specific port, but just entering through a specific port is not enough, there are many other security issues. For example, from the firewall, the physical firewall, you can't monitor like that. The physical firewall is dropping your inactive data, but you don't get details on who is doing it, from where they are doing it. You can't get it. To get it, if you need to block a user port or a user IP, to know which IP it's coming from, it's not possible without cybersecurity. Hmm. We'll have to move to that sector too. Later, we'll have to go for penetration testing, that. So slowly... okay. I think right now it's running, it's not running bad, it's running. No, exactly. Hmm. Okay. Okay. I understand. You keep it in your planning. Since Nesar bhai is here, keep this in the planning. If we tell the management, it will be a different matter. No, no, I will plan the whole thing with Rasel bhai and... if we keep it in the planning, it would be good. Hmm, hmm. Keep it in the planning. Even if not right now, in the future when our data structure gets bigger, then maybe, as you said, it will be needed. No, no, it's a huge thing, it will be needed, it has to be done. Because if you don't do this, the business becomes vulnerable now. You won't even realize someone from a place in Russia has come and attacked you. Exactly, exactly. As I mentioned, they shut down a company like Square. Yes exactly, yes exactly. My... your... I mean, as I said, from the firewall or MikroTik, you can't really understand from where the attacking is happening or who is trying to attack. Without cybersecurity, you won't be able to track it. I will talk to Rasel bhai about this, about the total infrastructure and then how everything can be maintained. I will talk to Rasel bhai individually about that. And if there's any need, if I have to say something to Jabed bhai, I can talk to him myself and settle it. That's not a problem, Inshallah. Whatever we do, we are doing it for the company's future. So that won't be a problem. Exactly. Now, you talk to them and I think you should plan it and then do it phase-wise, because they won't let you manage everything at once. Prioritize and start with what you can. That's what I said, we will prioritize one by one and solve the problems one by one. It's not possible to do everything at once. No, no, exactly. It has to be done periodically. But right now, right now, as Khadem bhai also understood, the network is stable. The network is stable. There's no pressure regarding the network. The network is stable. Later on, it has to be done periodically, slowly. Okay. I think, Rasel bhai, we've pretty much spoken with him, it's fine now. I will sit with you on a separate call. In the next couple of days. Rasel bhai is on the phone for a moment. He's on the phone. Okay, okay. Khadem ভাই, I think I'm done, right? Finished? Yes brother, my conversation is also finished. Okay Nesar bhai, thank you. Okay, okay, Allah hafiz. Nesar bhai, hold on for a minute. Okay, okay. Just a moment. Okay, I'm calling in a bit. Yes, brother. Yes. Nesar bhai. Yes, brother. See what a nice meeting I can conduct. Yes. No, it's fine. Didn't I tell you yesterday that we are having a big sales-related change? Because of this change, some... things happen, there's trouble... it's the beginning of the month, there's sales pressure too. That's it. Anyway, I think with Milton bhai, everything... you've had your... he couldn't provide as much support. No, it's fine. We will identify the overall picture here, from microservices onwards. So, to identify the overall picture, what we understood is to include third-party vendors or others here, and how those things can be done easily, and how we can do them, how much we can do, plus how much will go to the third party - identifying those things and then setting it up. Plus, another thing is, getting quotations from people is also better. Why? Different people will give different quotations, and different ideas come from there. Okay? Even if we can do it ourselves with this, we will still understand how much we are actually saving. Okay? So this is a process. This can't be decided today. Gradually, I will be able to overcome this, Inshallah. No problem. Okay. Inshallah. And regarding your interviews, tomorrow I will sit with your employees again. I will sit on Saturday and Sunday. I think by Saturday-Sunday, we will be 90% done. Since I'm sitting for a longer time. Arif saheb probably won't be there. But I said that... I'm the one interviewing, I'm talking to them. It will be fine even if you're not there. So no problem. I'm just... Whatever updates are coming, I will share them in the report later. So no problem. Okay, okay. Hmm. And... I didn't understand. Hmm. And your database engineer whom you mentioned, I've already spoken with him. I will have another meeting with him, Khadem and I will figure out how we can save our load balancing and the application. That will be our first priority. Saving the application first. It's a work of so much money, an investment of so much money, if it can't be saved, then it's going to be a critical problem. Yes, yes, yes, right. Right. That's it. And if you have any questions, ask me anytime. No problem. Khadem is also here. Khadem's mobile number, kindly... ...share it with Rasel bhai. Khadem. Yes, brother. Share your phone number with Rasel bhai, okay? If he has anything to ask, he can call you, call you directly and do it. And we are finalizing the overall things. And I am coming to Bangladesh in January, Inshallah. At your office... I mean, what I heard from Jabed bhai is that they want to move by February. Yes. By February... didn't you say, didn't you say there that there's no internet, we are actually having a lot of shifting, electrical work is going on, interruptions are happening. Will you leave? Khadem, will you leave? Okay, that's why I asked, can they actually shift by February? Because there's so much work left for him, and we have only about two months, December and January. Now, since sir has said it, sir is in a hurry. The effort is ongoing. Even if not completely, they will move partially. Partially, okay, partially. Which floors will you start with first? The one for them, for Jabed sir, will you do those floors first? I don't know the plan yet. Whether sir will come now or when he will come... I was able to get a location for my server room from sir two or three days ago, after a lot of persuasion. Okay. I still can't get that information. Okay. Okay, let me talk and see. Because your networking infrastructure is a huge thing. If you can't lay it out correctly, if it's not fixed at the root, the problem will remain. It costs even more money. Yes, yes, yes. You're right. Now, how the sirs do it... Let's see. Okay, let's see. I will also talk about it. And... Thank you. I am continuously working on it. You will go home now. So, Allah hafiz. In the next couple of days, I will talk to you on the phone again. Okay brother, yes. Thank you, thank you very much. Allah hafiz. Yes, Assalamualaikum. Wa alaikum. Assalamualaikum.