Hello guys,
Can you recommend software or cloud based solution which monitors if a prefix is advertised to a peer (via his Looking Glass for example) & if traffic is passing thru an interface and if one of them is false it announce this prefix via other upstream providers & remove blackholes?
Thanks.
Dmitry
Hello,
You seem to be looking for external automation to do something that's
baked into BGP. Any particular reason?
* Announce to all upstreams all the time.
* Use prepends on the less-preffered upstreams.
* If the less preferred upstream is localprefing to use your routes
despite the prepend, ask them what BGP community you should set to
disable that behavior.
* If an upstream propagates your route without passing your packets
often enough to need automation, cancel the contract.
I could see value in something local that measures things like packet
loss rates and cuts the primary if they get higher than acceptable,
but that wouldn't be a cloud service because the cloud wouldn't be
reliably reachable when you need to act on that information.
Regards,
Bill Herrin
Dmitry,
Hello. ThousandEyes might work for what you’re looking for - https://www.thousandeyes.com/solutions/bgp-and-route-monitoring.
I setup an account with https://bgpmon.net/ for my AS and prefixes. I get alerts to prefix withdrawals and changes. I’m not sure if its still totally free or not since it looks like Cisco bought it.
Back in the day there was Cyclops...
https://cyclops.netsec.colostate.edu/
Not sure it's still a thing, doesn't look like it's been updated in a while.
Yes.
It does the job. And it's easy to install and run.
Does anyone have a quick answer as to what public data sources are used? I tried looking at the main github page for the project but I either missed it or it isn't there.
Graham
Does anyone have a quick answer as to what public data sources are
used? I tried looking at the main github page for the project but I
either missed it or it isn't there.
ripe/ncc bgp stream
Does anyone have a quick answer as to what public data sources are used? I tried looking at the main github page for the project but I either missed it or it isn't there.
Where is the data coming from?
BGPalerter connects to public data sources (not managed by NTT) and the entire monitoring is done directly in the application (there are no NTT servers involved).A data source can be integrated with a connector component. In this way, you can also use your data if you would like.
Currently, BGPalerter connects automatically to RIS live, an amazing project by the RIPE NCC. RIS live collects BGP updates coming from more than 600 peers. The updates are streamed to BGPalerter in real time for an unprecedented detailed and responsive monitoring.
https://raw.githubusercontent.com/nttgin/BGPalerter/v1.26.0/config.yml.example
--> connectors
Randy Bush writes:
We use it, and have it configured to send alerts to the NOC team's chat
tool (Mattermost). Seems pretty nice and stable. Kudos to Massimo and
NTT for making it available and for maintaining it!
The one issue we see is that the server often logs disconnections from
the RIS service (to its logfile, fortunately not generating alerts).
Hi
Shared appreciation!! (and observation).
Cheers,
mh
29 septembre 2020 17:16 "Simon Leinen" <simon.leinen@switch.ch> a écrit: