mirror of
https://github.com/nttgin/BGPalerter.git
synced 2024-05-19 06:50:08 +00:00
178 lines
4.9 KiB
Plaintext
178 lines
4.9 KiB
Plaintext
environment: production
|
|
|
|
connectors:
|
|
- file: connectorRIS
|
|
name: ris
|
|
params:
|
|
carefulSubscription: true
|
|
url: wss://ris-live.ripe.net/v1/ws/
|
|
subscription:
|
|
moreSpecific: true
|
|
type: UPDATE
|
|
host:
|
|
socketOptions:
|
|
includeRaw: false
|
|
|
|
monitors:
|
|
- file: monitorHijack
|
|
channel: hijack
|
|
name: basic-hijack-detection
|
|
params:
|
|
thresholdMinPeers: 2
|
|
|
|
- file: monitorNewPrefix
|
|
channel: newprefix
|
|
name: prefix-detection
|
|
params:
|
|
thresholdMinPeers: 2
|
|
|
|
- file: monitorPath
|
|
channel: path
|
|
name: path-matching
|
|
params:
|
|
thresholdMinPeers: 0
|
|
|
|
- file: monitorVisibility
|
|
channel: visibility
|
|
name: withdrawal-detection
|
|
params:
|
|
thresholdMinPeers: 10
|
|
|
|
- file: monitorAS
|
|
channel: misconfiguration
|
|
name: asn-monitor
|
|
params:
|
|
thresholdMinPeers: 2
|
|
|
|
reports:
|
|
- file: reportFile
|
|
channels:
|
|
- hijack
|
|
- newprefix
|
|
- visibility
|
|
- path
|
|
- misconfiguration
|
|
|
|
# - file: reportEmail
|
|
# channels:
|
|
# - hijack
|
|
# - newprefix
|
|
# - visibility
|
|
# - path
|
|
# - misconfiguration
|
|
# params:
|
|
# showPaths: 5 # Amount of AS_PATHs to report in the alert
|
|
# senderEmail: bgpalerter@xxxx
|
|
# # BGPalerter uses nodemailer.
|
|
# # The smtp section can be configured with all the parameters available at https://nodemailer.com/smtp/
|
|
# # the following are just the most useful one
|
|
# smtp:
|
|
# host: localhost
|
|
# port: 25
|
|
# secure: false # If true the connection will use TLS when connecting to server. If false it will be still possible doing connection upgrade via STARTTLS
|
|
# ignoreTLS: false # If true TLS will be completely disabled, including STARTTLS. Set this to true if you see certificate errors in the logs.
|
|
# auth:
|
|
# user: username
|
|
# pass: password
|
|
# type: login
|
|
# tls:
|
|
# rejectUnauthorized: true # Reject unauthorized certificates
|
|
# notifiedEmails:
|
|
# default:
|
|
# - joe@example.org
|
|
# - noc@example.org
|
|
|
|
# - file: reportSlack
|
|
# channels:
|
|
# - hijack
|
|
# - newprefix
|
|
# - visibility
|
|
# - path
|
|
# - misconfiguration
|
|
# params:
|
|
# colors:
|
|
# hijack: '#d60b1c'
|
|
# newprefix: '#fa9548'
|
|
# visibility: '#fad648'
|
|
# path: '#42cbf5'
|
|
# hooks:
|
|
# default: _YOUR_SLACK_WEBHOOK_URL_
|
|
|
|
# - file: reportKafka
|
|
# channels:
|
|
# - hijack
|
|
# - newprefix
|
|
# - visibility
|
|
# - path
|
|
# - misconfiguration
|
|
# params:
|
|
# host: localhost
|
|
# port: 9092
|
|
# topics:
|
|
# default: bgpalerter
|
|
|
|
# - file: reportSyslog
|
|
# channels:
|
|
# - hijack
|
|
# - newprefix
|
|
# - visibility
|
|
# - path
|
|
# - asn-monitor
|
|
# - misconfiguration
|
|
# params:
|
|
# host: localhost
|
|
# port: 514
|
|
# templates:
|
|
# default: "++BGPalerter-3-${type}: ${summary}|${earliest}|${latest}"
|
|
# hijack: "++BGPalerter-5-${type}: ${summary}|${prefix}|${description}|${asn}|${newprefix}|${neworigin}|${earliest}|${latest}|${peers}"
|
|
# newprefix: "++BGPalerter-4-${type}: ${summary}|${prefix}|${description}|${asn}|${newprefix}|${neworigin}|${earliest}|${latest}|${peers}"
|
|
# visibility: "++BGPalerter-5-${type}: ${summary}|${prefix}|${description}|${asn}|${earliest}|${latest}|${peers}"
|
|
|
|
|
|
|
|
############################
|
|
# Notification settings:
|
|
# - notificationIntervalSeconds
|
|
# Defines the amount of seconds after which an alert can be repeated. An alert is repeated only if the event that
|
|
# triggered it is not yet solved. Please, don't set this value to Infinity, use instead alertOnlyOnce.
|
|
#
|
|
# - alertOnlyOnce - A boolean that, if set to true, will prevent repetitions of the same alert even if the event that
|
|
# triggered it is not yet solved. In this case notificationIntervalSeconds will be ignored.
|
|
# If set to true, the signature of all alerts will be cached in order to recognize if they already happened in
|
|
# the past. This may lead to a memory leak if the amount of alerts is considerable.
|
|
|
|
notificationIntervalSeconds: 7200
|
|
alertOnlyOnce: false
|
|
|
|
############################
|
|
|
|
# Below the files containing the monitored prefixes. Please see prefixes.yml for an example.
|
|
# This is an array (use new lines and dashes!)
|
|
monitoredPrefixesFiles:
|
|
- prefixes.yml
|
|
|
|
logging:
|
|
directory: logs
|
|
logRotatePattern: YYYY-MM-DD # Whenever the pattern changes, a new file is created and the old one rotated
|
|
zippedArchive: true
|
|
maxSize: 80m
|
|
maxFiles: 14d
|
|
|
|
checkForUpdatesAtBoot: true
|
|
|
|
|
|
#uptimeMonitors:
|
|
# - file: uptimeApi
|
|
# params:
|
|
# useStatusCodes: true
|
|
# host: null
|
|
# port: 8011
|
|
#
|
|
# - file: uptimeHealthcheck
|
|
# params:
|
|
# url: url_to_poll
|
|
# intervalSeconds: 300
|
|
# method: get
|
|
|
|
pidFile: bgpalerter.pid
|