http://open-source-security-software.net/project/BGPalerter/releases.atom Recent releases for BGPalerter 2024-06-24T03:56:36.007866+00:00 python-feedgen BGPalerter v1.19.1 BGPalerter v1.19.1 2019-09-19T22:01:24+00:00 2019-09-19T22:01:24+00:00 BGPalerter v1.19.2 BGPalerter v1.19.2 2019-09-20T12:09:47+00:00 * fixed issue reporting undefined version in binaries 2019-09-20T12:09:47+00:00 BGPalerter v1.20.0 BGPalerter v1.20.0 2019-09-27T22:34:18+00:00 [major] * Introduced path matching functionalities, see https://github.com/nttgin/BGPalerter/pull/22 for more details. [minor] * Added the possibility to include/exclude monitors on specific resources, see https://github.com/nttgin/BGPalerter/pull/21 for more details. 2019-09-27T22:34:18+00:00 BGPalerter v1.20.1 BGPalerter v1.20.1 2019-10-04T20:29:59+00:00 [minor] * Fixed some stability issues when RIPEstat APIs are not reachable when generating prefix lists * Fixed stability issue of monitorPath * Fixed bug missing some prefixes on re-connect to RIS stream (e.g. on 1006 error) * Fixed rare crash case when BGP updates arrive malformed 2019-10-04T20:29:59+00:00 BGPalerter v1.20.2 BGPalerter v1.20.2 2019-10-23T12:07:04+00:00 * Introduced thresholdMinPeers for all monitors * Fixed #27 * Introduced client id in RIS connection for debug purposes 2019-10-23T12:07:04+00:00 BGPalerter v1.21.0 BGPalerter v1.21.0 2019-10-31T18:25:18+00:00 [features] * Introduced Kafka report. Alerts and data can be now streamed to Kafka. Topics configuration in config.yml. * AS paths are now reported in hijack emails. * Introduced alertOnlyOnce configuration parameter * Introduced -p and -pf attributes to generate a complete prefix list from a set of prefixes provided as input. * Moved email template logic to dedicated component. * Email templates are now automatically generated in case the files cannot be found. This makes the binary of BGPalerter self-contained 100%. [fixes] * Updated all dependencies. * Removed dependency from forever module. * Improved documentation. [repo] * Added support for ESlint * Added dependency auto update bot * Added pull request code validation bot 2019-10-31T18:25:18+00:00 BGPalerter v1.22.0 BGPalerter v1.22.0 2019-11-28T20:04:25+00:00 [features] * Added support for API to check BGPalerter status (e.g. for Nagios or Uptime Robot integration) * Introduced possibility to monitor whatever is announced by an AS (#68) [fixes] * Upgraded all dependencies to latest version * Replaced -pf with -l to fix multichar attribute issue (#62) * Added logs during prefix file generation * Improved wording of some error messages * Refactored source organization * Improved documentation 2019-11-28T20:04:25+00:00 BGPalerter v1.23.2 BGPalerter v1.23.2 2020-01-24T14:34:54+00:00 **Some parameters changed in config.yml** If you run the new BGPalerter release on the old config.yml the monitoring functionalities will work as usual. You will not enjoy many of the new features though. **Please see [config.yml.example](https://github.com/nttgin/BGPalerter/blob/master/config.yml.example) in order to update your configuration.** Changelog 1.23.0 (minor patches described at the end): * Major profiling: reduced memory and CPU usage. * Introduced the possibility to automatically log on files the BGP messages that generated an alert in order to facilitate inspection and debugging of network configuration. See [reportFile](https://github.com/nttgin/BGPalerter/blob/master/docs/configuration.md#reportfile). * Added docker builds for stable and dev releases. Each stable release is also preserved. * Introduced `processMonitors` for monitoring the process in a modular way. It is now possible to add multiple monitors to monitor uptime, performance, and exceptions. **The `uptimeApi` has been merged into this new feature**, see [config.yml.example](https://github.com/nttgin/BGPalerter/blob/master/config.yml.example). * Introduced binary releases for Windows (experimental). * Introduced fade-off mechanism for monitoring events which make sense only if the BGP messages provoking the alerts are all happening in a short time frame. This will reduce visibility alerts which don't reach `thresholdMinPeers` before `fadeOffSeconds `. * Added option `showPaths` in all reporting modules (included reportSlack, solving #108). * Drastically improved log on file performances and memory usage (removed dependency from [winston](https://github.com/winstonjs/winston) which was cause of the issue). * Upgraded to Node 12 (in package.json, binary, and docker). * Introduced a buffer to protect the process from sudden peaks of BGP messages (see option `maxMessagesPerSecond`). * Introduced `maxDataSample` option for monitor modules. See [here](https://github.com/nttgin/BGPalerter/blob/master/docs/configuration.md). * Introduced possibility for the connectors to stream batches of messages. * New report module for Alerta (thanks Mircea Ulinic). * Exported in config.yml some advanced options and related documentation. See [here](https://github.com/nttgin/BGPalerter/blob/master/docs/configuration.md). * Added support for Sentry exception logging (thanks Mircea Ulinic). * Solved memory leak #114 . * Fixed bug #100 where `ignore: true` in prefixes.yml was interfering with the `monitorASns` option (thanks Damian Zaremba). * Public release of the RPKI monitor module. * Changed defaults config values: `notificationIntervalSeconds` is now greater according to average user noise requirements; `multiProcess` has been introduced and set to false by default (before BGPalerter used two processes). * Added development modules: `ConnectorFullThrottle` that generates fast and unlimited BGP messages useful to test overall performances; `monitorPassthrough` to log on file all BGP messages. * Fixed -p flag for generating prefixes.yml from list of prefixes. * Introduced `npm run inspect` for Node.js profiling in Chrome. * Upgraded all dependencies. * Reduced number of external dependencies. Minors: * v1.23.1 minor release for fixing a bug that could affect more specific matching * v1.23.2 minor release for fixing a bug that affected AS monitoring for IPv6 Note: A bug which provoked (in some cases) duplication of BGP messages has been addressed on the RIPE RIS side (thanks Christopher Amin, see https://github.com/nttgin/BGPalerter/issues/140) 2020-01-24T14:34:54+00:00 BGPalerter v1.24.0 BGPalerter v1.24.0 2020-03-09T00:46:54+00:00 [features] * Introduced research environment, which removes some constraints enforced in production in order to allow experimental analysis * Introduced auto configuration wizard * Introduced Webex support (thanks Alan Haynes) [minor] * Updated dependencies * Deprecation of resource_templates in favour of resourceTemplates in config.yml * Fixed generate prefixes option -s * Download default configuration from Git repo (which includes commented options), generate it locally only if the download fails 2020-03-09T00:46:54+00:00 BGPalerter v1.25.0 BGPalerter v1.25.0 2020-05-10T22:09:25+00:00 [features] * Extended monitorRPKI to support monitoring of entire ASes. It alerts in case of announcements of prefixes invalid or not covered by ROAs. * Introduced reportHTTP. This report is able to send alerts on a generic HTTP end-point (post requests). This introduces support for Mattermost and other chat based on webhooks. [minor] * Fixed error management in case of RIS connection failure (https://github.com/nttgin/BGPalerter/issues/187) * Fixed config.yml generation when the download fails (https://github.com/nttgin/BGPalerter/issues/218) * Use 24 hours format in reports (#228) * Documentation improvements and new tutorials * Implemented updateMonitoredResources method in monitorPassthrough * Updated all dependencies, including minimist 2020-05-10T22:09:25+00:00 BGPalerter v1.26.0 BGPalerter v1.26.0 2020-07-18T16:47:40+00:00 [features] * Introduced proxy support. * Introduced `volume` parameter. It allows to specify a directory that will be used by BGPalerter for reading/writing all needed files. * Introduced `persistStatus` parameter. If set to true, when BGPalerter is restarted the list of alerts already sent is recovered. This avoids duplicated alerts. https://github.com/nttgin/BGPalerter/issues/103. * Introduced reportTelegram. * Added the possibility to specify an external file for as VRPs list for monitorRPKI. * Added UDP support on reportSyslog. [minor] * Improved stability of monitorRPKI. * Improved documentation for docker. * Added documentation with configuration example for reporting to Mattermost (thanks [@fstolba](https://github.com/nttgin/BGPalerter/issues/81)). * Added documentation with configuration example for reporting to Pushover (thanks [Hugo Salgado](https://twitter.com/huguei/status/1278771420525408258)). * Improved test coverage for reportSyslog, monitorRPKI. * Added parallel tests execution. * Updated all dev dependencies affected by lodash 4.17.15 prototype pollution. 2020-07-18T16:47:40+00:00 BGPalerter v1.26.1 BGPalerter v1.26.1 2020-07-23T19:31:31+00:00 [features] * Introduced proxy support (thanks @fdomain for the help). * Introduced `volume` parameter. It allows to specify a directory that will be used by BGPalerter for reading/writing all needed files. * Introduced `persistStatus` parameter. If set to true, when BGPalerter is restarted the list of alerts already sent is recovered. This avoids duplicated alerts. https://github.com/nttgin/BGPalerter/issues/103. * Introduced reportTelegram (thanks @denisix for the help). * Added the possibility to specify an external file for as VRPs list for monitorRPKI. * Added UDP support on reportSyslog. [minor] * Fixed wrong calculation of covering ROAs in monitorRPKI. * Added proper error handling in monitorRPKI when the VRPs are not downloadable or not parsable. * Improved documentation for docker. * Added documentation with configuration example for reporting to Mattermost (thanks [@fstolba](https://github.com/nttgin/BGPalerter/issues/81)). * Added documentation with configuration example for reporting to Pushover (thanks [Hugo Salgado](https://twitter.com/huguei/status/1278771420525408258)). * Improved test coverage for reportSyslog, monitorRPKI. * Added parallel tests execution. * Updated all dev dependencies affected by lodash 4.17.15 prototype pollution. Patches: - v1.26.1 fixed bug affecting reportHTTP in case of showPaths feature active, added test coverage 2020-07-23T19:31:31+00:00 BGPalerter v1.26.2 BGPalerter v1.26.2 2020-07-27T23:29:29+00:00 [features] * Introduced proxy support (thanks @fdomain for the help). * Introduced `volume` parameter. It allows to specify a directory that will be used by BGPalerter for reading/writing all needed files. * Introduced `persistStatus` parameter. If set to true, when BGPalerter is restarted the list of alerts already sent is recovered. This avoids duplicated alerts. https://github.com/nttgin/BGPalerter/issues/103. * Introduced reportTelegram (thanks @denisix for the help). * Added the possibility to specify an external file for as VRPs list for monitorRPKI. * Added UDP support on reportSyslog. [minor] * Fixed wrong calculation of covering ROAs in monitorRPKI. * Added proper error handling in monitorRPKI when the VRPs are not downloadable or not parsable. * Improved documentation for docker. * Added documentation with configuration example for reporting to Mattermost (thanks [@fstolba](https://github.com/nttgin/BGPalerter/issues/81)). * Added documentation with configuration example for reporting to Pushover (thanks [Hugo Salgado](https://twitter.com/huguei/status/1278771420525408258)). * Improved test coverage for reportSyslog, monitorRPKI. * Added parallel tests execution. * Updated all dev dependencies affected by lodash 4.17.15 prototype pollution. Patches: - v1.26.1 fixed bug affecting reportHTTP in case of showPaths feature active, added test coverage - v1.26.2 fixed bug related to the the new volume feature which was breaking configurations containing absolute paths (#308) 2020-07-27T23:29:29+00:00 BGPalerter v1.27.0 BGPalerter v1.27.0 2020-11-10T02:24:49+00:00 Pre-release 2020-11-10T02:24:49+00:00 BGPalerter v1.27.1 BGPalerter v1.27.1 2021-01-06T00:19:54+00:00 pre-release 2021-01-06T00:19:54+00:00 BGPalerter v1.28.0 BGPalerter v1.28.0 2021-05-23T14:16:39+00:00 This is not yet a release (it's a pre-release). Please, use v1.27.1 TODO: - changelog 2021-05-23T14:16:39+00:00 BGPalerter v1.28.1 BGPalerter v1.28.1 2021-06-23T20:25:43+00:00 [features] * Introduced `monitorPathNeighbors` for monitoring peers. You will get notified when an unexpected downstream or upstream AS appears as peer of your AS in an AS path. Basically you can "lock" your peers (the peers you expect to see in the AS path) and get notified when these change. * Introduced `reportPullAPI` a REST API to retrieve alerts (pull, instead of the usual push approach); * Introduced feature in `monitorROAS` to receive notifications of expiring ROAs. * Introduced feature in `monitorROAS` to monitor for TA malfunctions; e.g., many ROAs disappearing or expiring in the same TA. * Improved reliability of the WebSocket connection to RIS. In particular, added monitoring of beacon prefixes to detect "silent" sockets (https://github.com/nttgin/BGPalerter/issues/535). * Introduced `connectorRISDump`, which, at boot time, retrieves a RIS dump about the monitored resources. This allows you to get notified about events that happened before BGPalerter started. * Introduced feature that allows you to use a remote REST API as VRP input. * Introduced `groupsFile`, an external file to define user groups. This allows to edit user groups for the report modules without changing the main config file. * Added rpki-client.org as remote vrpProvider (thanks @job) * Introduced `checkDisappearing` parameter in `monitorRPKI` in order to enable/disable disappearing ROAs alerting (similar alerts are also produced by `monitorROAS`). * Introduced config file version check. While old config files remain valid, if BGPalerter finds out your are missing out some features due to a non up-to-date config file, it will suggest you to update it. * Introduced possibility to use `monitorROAS` on specific prefixes (in addition to monitoring the entire AS). [minor] * Improved `config.yml.example` with more comments/documentation. * Updated default `thresholdMinPeers` after review of last quarter reports. * Renamed master branch to main. Updated all references. * Fixed exception on `reportSlack` in case of missing default user group configuration. * Fixed generate prefix list command in case of low visibility prefixes. * Fixed bug which was deleting the configured rules of specific prefixes during prefix list regeneration (#518) * Added in documentation an example of BGPalerter+Routinator integration (thanks @AlexanderBand) * Improved documentation, including: documentation on how to stage roas for testing, reorganized reports in dedicated section, and more. * Improved error handling for `reportTelegram`, it now provides an error in case of null chatId (thanks @Antonio-Prado) * Refactored `rest` and `rpki` configuration to be globally valid (instead of per module). Special thanks to @chrisamin for the support/patches on the RIPE RIS side. Patches: * v1.28.1 fixed https://github.com/nttgin/BGPalerter/issues/593 2021-06-23T20:25:43+00:00 BGPalerter v1.28.2 BGPalerter v1.28.2 2021-08-02T16:11:11+00:00 2021-08-02T16:11:11+00:00 BGPalerter v1.28.3 BGPalerter v1.28.3 2021-09-06T09:57:25+00:00 2021-09-06T09:57:25+00:00 BGPalerter v1.28.4 BGPalerter v1.28.4 2021-09-15T11:16:15+00:00 [patch] * fixed bug in which monitoring rules were overwriting each other (#648); > This bug may have affected your auto-generated prefixes.yml file (delete prefixes.yml and generate it again) * pointed RIPE's vrp api to the new api powered by routinator; * updated dependencies. 2021-09-15T11:16:15+00:00 BGPalerter v1.29.0 BGPalerter v1.29.0 2021-10-25T16:37:20+00:00 [minor] * Introduced authentication header for websocket connections 006eb64e6b5bbc428d125f7a041682a42b0eeb44 * Introduced timeout verification in case of missing open message from RIS 0125b17514145fd0c79bae244171a07588794239 * Introduced OpsGenie HTTP configuration example d1761bbf9c987881da9c2728efec02adee5e22db (thanks @trickv) * Introduced RocketChat HTTP configuration example 0f52fb214bdf064209b00dd4b2ecdd94f0756daa (thanks @cadirol) * Binaries are now compiled against node 14 006eb64e6b5bbc428d125f7a041682a42b0eeb44 [patch] * Updated dependencies * Fixed traling slash bug on ws parameters e4f19d35c7ef7dc1eaca74cd9754503c22762f35 * Improved documentation about volume parameter 2bb199a3d89f3502823953b41b408b7cbcfda9c5 * Update Kafka version in automated tests environment 53203ba7e1bc0e17920244c17d6d4d87a419eb11 * Adopted semver nomenclature in documentation 4491f4ee630728fe4e2210fd260a8d2c5e2b8d20 * Filter out RIS beacons when these are used only as a health check of the socket (preventing #732 for some RIS feeders) 4301b2b3a8d16911919b410745e2a98d04236ecc * Improved TA malfunction alert fdce01d58fd42a08adee41446ce4c8d23a8cdadf 2021-10-25T16:37:20+00:00 BGPalerter v1.30.0 BGPalerter v1.30.0 2022-06-10T20:25:49+00:00 [minor] * Improved RPKI alerting to include more detailed information about the exact expiring/malfunctioning components. It will tell you whether your ROAs are expiring or something else in the validation chain (thanks to [rpki-client](https://www.rpki-client.org/) metadata, @job). E.g., ``` The following ROAs will become invalid in less than 2 hours: <193.0.0.0/21, 3333, 21, ripe>; <193.0.10.0/23, 3333, 23, ripe>. The reason is the expiration of the following parent components: rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer ``` * Improved alert metadata to include info about the exact ROAs covering the prefix at the time of the reporting, the validator used, the host used for the validation, the time of the last validation cycle, and more. * Improved logs to inform when and where alerts are sent (to which email/ip/channel), in addition to the usual log in case of failure. This helps in discovering silent failures (e.g., a fw between BGPalerter and your syslog instance). * Split channels between monitorRPKI and monitorROAs in the default configuration, to easily dispatch the alerts in different reports. * Added support for docker-compose (thanks @GoliathLabs). [patch] * Updated dependencies and improved security. * Fixed error in generating context when showPath is active but no paths are reported. * Fixed error on neighbor auto-config on configurations when generating configurations based only on prefixes (reported by @donwito). * Improved performance on watching prefix list. * Fixed canary feature not recovering after multiple failures. * Improved documentation about installation and ROA alerting. * Updated version of supported Kafka. * Improved linux doc on how to automatically run upgrades (thanks @herbetom). * Reduced memory usage of prefix-generation phase. * Many minor fixes... 2022-06-10T20:25:49+00:00 BGPalerter v1.30.1 BGPalerter v1.30.1 2022-08-12T11:37:25+00:00 This is a patch on version [1.30.0](https://github.com/nttgin/BGPalerter/releases/tag/v1.30.0), which introduced many improvements. Including, better RPKI monitoring able to self-debug some RPKI issues (thanks to [rpki-client](https://www.rpki-client.org/) metadata, @job). E.g., ``` The following ROAs will become invalid in less than 2 hours: <193.0.0.0/21, 3333, 21, ripe>; <193.0.10.0/23, 3333, 23, ripe>. The reason is the expiration of the following parent components: rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer ``` --> See [v1.30.0](https://github.com/nttgin/BGPalerter/releases/tag/v1.30.0) for complete changelog. [patch] * Fixed missing metadata in some roa alerts. * Allow disabling rpki stats to reduce memory usage and introduced memory requirements in documentation 2022-08-12T11:37:25+00:00 BGPalerter v1.31.0 BGPalerter v1.31.0 2022-10-24T14:43:57+00:00 [minor] * Introduced Debian packaging (thanks @b4ldr) * Enrich alert data with covering vrps at the time, for easier debugging (reported by @PacketVis) * Add relevant data bits of path monitoring to context/email templates to be able to provide actionable alerts (reported by @PacketVis) [patch] * Fixed navigation of rpki chain (and improved performance), when ROAs were expiring due to a manifest, this was not reported correctly making the alert ambiguous (thanks @PacketVis) * More reliable detection of silent sockets not based only on ws ping * Added github-actions and docker to dependabot monitoring (thanks @GoliathLabs) * Updated and patched dependencies 2022-10-24T14:43:57+00:00 BGPalerter v1.31.1 BGPalerter v1.31.1 2022-12-23T16:20:52+00:00 [patch] * fixed a bug that was impacting the sensitivity of withdrawal detection for ipv6 prefixes (thanks @mfld-pub for reporting and helping with the debugging) * fixed event context for path monitoring * updated dependencies 2022-12-23T16:20:52+00:00 BGPalerter v1.32.0 BGPalerter v1.32.0 2023-02-13T22:04:28+00:00 [minor] * introduced reportMatrix (thanks @nickbouwhuis) * introduced Jira integration (thanks @momorientes and @PacketVis) * introduced safety threshold to avoid alerting on stale rpki data * introduced possibility to specify `notificationIntervalSeconds` per reporting module * default to enableAdvancedRpkiStats to false to reduce memory usage * migrated to node 18 [patch] * fixed memory usage peaks that was causing occasional crashes on low-spec VMs * reduced data usage for rpki data downloads based on http headers * updated dependencies, including security patches (https://github.com/nttgin/BGPalerter/pull/801, https://github.com/nttgin/BGPalerter/pull/1010) * improved wording of misconfiguration alert (https://github.com/nttgin/BGPalerter/issues/940) * improved documentation * fixed alert text including multiple origin ASes that was provoking weird comma-separated listing * fixed ambiguous reporting of expiring roa components in case of advanced stats out of sync with vrp file * fixed rpki parsing util not accepting "api" as valid provider (https://github.com/nttgin/BGPalerter/issues/1005) 2023-02-13T22:04:28+00:00 BGPalerter v1.33.0 BGPalerter v1.33.0 2024-01-06T19:22:09+00:00 TODO 2024-01-06T19:22:09+00:00