RISINFORMER - a-kuzik/risinformer GitHub Wiki

RIPE RIS Informer

  • About

This small project is not a new idea. Unlike the bgpalerter, that is written in JavaScript, it contains a few Python scripts for parsing the stream from RIPE Routing Information Service Live, detecting the BGP route leaks, hijacks, updates with wrong origin, all BGP updates and withdrawals messages, and also sending serialized data to collector for visualizing, send notifications to email, slack or telegram.

  • Installation This process is very easy. You just need to run the setup.py script and answer for all questions. More detailed examples are below.
  1. Create the directory on your host for installing all scripts:

cd /opt/

  1. Download scripts from repository:

sudo git clone https://github.com/a-kuzik/risinformer.git

  1. Run setup.py script:

cd risinformer/

sudo python3 setup.py

Don't worry, the setup.py just will make two files only, config.yaml and prefixes.json :-)

setup_py

  1. In the next step you should correct the config.yaml file with adding information for sending notification to slack or telegram channel (the both is possible):

Here is some example:

config_2

  1. In additional you should check that the prefixes.json file was created:

ls -l /opt/risinformer/ | grep prefixes

  1. All right. Now you can run the main script:

sudo python3 risinformer.py

, and if the options debug has True state, you can see the output on your terminal:

stdout_1

Also now you can receive the notification in telegram and slack:

telegram

slack

  1. Next, you can use the serialized data that send to your collector for visualizing, for example in ELK:

risinformerELK