通知エンドポイントの設定

通知エンドポイントについて

ポリシーの作成中に、ポリシー内のルールに違反した場合にアラーム通知を受信する複数のエンドポイントを設定できます。

次の通知エンドポイントタイプを使用できます。

  • E メール

  • Google ストレージ

  • Amazon S3

  • SMS

  • Slack

  • WebEx

  • Microsoft Teams

  • PagerDuty

エンドポイント通知の内容

アラーム通知情報の内容と配信は、エンドポイントの通知タイプによって異なります。通知メッセージに含まれる情報のタイプは、Raw データまたは要約データに分類されます。

生データ(Raw Data)

Amazon S3 とGoogleストレージの通知エンドポイントの場合、情報は未加工の形式で一連の JSON(JavaScript Object Notation)オブジェクトとして提供されます。JSON オブジェクトは、システムに表示されるアラーム通知イベントを表します。これらのイベントは、現在の時間枠(現在の 1 分間など)に対応するオブジェクトとして、設定された S3 とクラウドストレージのバケットに書き込まれます。指定した時間帯に配信されたイベントがない場合、JSON オブジェクトは書き込まれません。アラームタイプ別 Amazon S3 と Google ストレージのエンドポイント通知の例の例を参考にしてください。

要約データ

メッセージには、一定期間に発生したイベントの要約が含まれます。通常、メッセージには、アラーム遷移イベントの総数、最初のいくつかのイベントからの特定のアラームの詳細、およびその他のイベントを表示するためのリンクが含まれます。表示される正確な形式とアラームの詳細は、エンドポイントタイプと、対応するメッセージサイズの制約によって異なります(たとえば、SMS エンドポイントでは総数を表示するスペースしかないため、特定のアラームの詳細は含まれません)。

エラー処理

エンドポイントが通知の受信に失敗した場合は、成功するか、通知がシステムに存在しなくなるまで、Crosswork Cloud は通知の配信を試みます。後者の場合、通知エンドポイントは配信されません。

通知エンドポイントの設定

ポリシー規則に違反すると、[アラーム(Alarms)] ページにアラームが表示されますが、アラームが発生したときに、自分やユーザのグループに Crosswork Cloud から通知することもできます。また、アラーム通知を受信するようにエンドポイントを設定できます。

エンドポイント通知は、ポリシー内で設定するか、[設定(Settings)] アイコン [設定(Settings)] アイコン > [グローバル(Global)] > [通知(Notifications)] の順にクリックして設定します。次の手順を実行して、エンドポイント通知を作成します。

手順

ステップ 1

メインウィンドウで、 [設定(Settings)] アイコン > [グローバル(Global)] > [通知(Notifications)] をクリックします。

ステップ 2

作成するエンドポイントの通知タイプを選択します。

(注)  

 

通知メッセージの例も参照してください。

ステップ 3

[typeのエンドポイントの追加(Add type Endpoint)] をクリックします。

ステップ 4

エンドポイントの名前を入力します。

ステップ 5

エンドポイントが [有効(Enabled)](デフォルト)か [無効(Disabled)] かを選択します。

ステップ 6

ステップ 2 で選択したエンドポイントタイプに必要な情報を入力します。

ステップ 7

(任意)メモを入力します。

ステップ 8

[保存(Save)] をクリックします。

ステップ 9

Crosswork Cloud から確認コードを受信したら、[確認コード(Verification Code)] フィールドにコードを入力し、[確認(Verify)] をクリックします。

[今はスキップ(Skip for Now)] を選択すると、Crosswork Cloud はエンドポイントが作成しますが、確認コードを入力してエンドポイントを確認するまで、エンドポイントに通知は送信されません。

Google ストレージエンドポイントの設定

Crosswork Cloudを設定して、通知ログを Google Cloud Storage に送信するようにすることもできます。

始める前に

  • Google Cloud Storage アカウントと、すべてのアラーム通知情報の送信先となる既存の Cloud Storage バケットが必要です。

  • Google Cloud Storage バケットに対するCrosswork Cloudのアクセスを許可するには、サービス アカウント キー ファイル(JSON 形式)を作成してください。このファイルは、Google ストレージの通知エンドポイント設定の一部としてアップロードする必要があります。

手順

ステップ 1

Crosswork Cloudで、[設定(Settings)] アイコン > [グローバル(Global)] > [通知(Notifications)] > [Google ストレージ(Google Storage)] タブの順にクリックし、[Google ストレージエンドポイントの追加(Add Google Storage Endpoint)] をクリックします。

ステップ 2

次の手順を実行します。

  1. 通知の名前を入力します。

  2. オプションを [有効(ENABLED)] に切り替えます。

  3. Google Cloud Storage バケットの名前を入力します。

  4. 通知ログを保存するバケット内に特定のフォルダがある場合は、パスを入力します。

  5. Google Cloud Storage へのアクセスを可能にする JSON キーファイルをアップロードします。

ステップ 3

[保存(Save)] をクリックします。

Google Cloud Storage バケット内のファイルの場所とプロパティの例:

Google ストレージ通知ファイルの例

(注)  

 

ログファイルの内容の例については、アラームタイプ別 Amazon S3 と Google ストレージのエンドポイント通知の例を参照してください。

Webex エンドポイントの設定

Webex スペースに通知を送信するように、Crosswork Cloud を設定できます。この手順では、ウェブフックを作成し、UI で通知エンドポイントを設定する方法について説明します。

始める前に

apphub.webex.com アカウントを持ち、ウェブフックを作成する Webex スペース(ルーム)のメンバーである必要があります。

手順

ステップ 1

https://apphub.webex.comにログインします。

ステップ 2

[着信ウェブフック(Incoming Webhooks)]を検索します。[着信ウェブフック(Incoming Webhooks)] アプリケーションが一覧表示されます。

ステップ 3

[着信ウェブフック(Incoming Webhooks)] アプリケーションをクリックします。

ステップ 4

[着信ウェブフック(Incoming Webhooks)] ページで、[接続(Connect)] をクリックします。

ステップ 5

複数の項目に対する権限を要求するウィンドウが表示され、同意する場合は、[同意(Accept)] をクリックします。

ステップ 6

ページを下にスクロールし、表示されたスペースに新しいウェブフック名を入力し、ドロップダウンリストから Webex スペースを選択します。

ステップ 7

[追加(Add)] をクリックします。[ウェブフック URL(Webhook URL)] フィールドに値が入力されます。

ステップ 8

後で使用するために、新しく作成したウェブフック URL をコピーします。

ステップ 9

Crosswork Cloudで、 [設定(Settings)] アイコン > [グローバル(Global)] > [通知(Notifications)] をクリックします。

ステップ 10

[Webex] を選択し、[Webexエンドポイントの作成(Create Webex Endpoint)] をクリックします。

ステップ 11

エンドポイントの名前を入力します。

ステップ 12

[ウェブフック URL(Webhook URL)] フィールドに、前にコピーしたウェブフック URL を貼り付けます。

 https://webexapis.com/v1/webhooks/incoming/<new_webhook_ID>

ステップ 13

[保存(Save)] をクリックします。

新しいエンドポイントを設定したことを示す通知を Webex スペースで受信します。

ステップ 14

エンドポイントを確認すると、エンドポイントがアクティブ状態に変わり、新しい通知を処理します。

Microsoft Teams エンドポイントの設定

次の手順を実行して、Crosswork Cloud で Microsoft Teams エンドポイントを設定します。Microsoft Teams でのアクションが必要な手順には、 Microsoft サポートサイトへのヘルプリンクが含まれています。ただし、 Microsoft Teams のオンラインドキュメントで最新の手順を検索するベストプラクティスを推奨します。

手順

ステップ 1

Microsoft Teams で、Crosswork Cloud アラーム通知を受信するチームを作成します

ステップ 2

着信ウェブフックを作成し、後で Crosswork Cloud で使用する一意のウェブフック URL をコピーします。

ステップ 3

Crosswork Cloudで、[設定(Settings)] アイコン > [グローバル(Global)] > [通知(Notifications)] の順にクリックします。

ステップ 4

[Microsoft Teams] を選択し、[Microsoft Teamsエンドポイントの追加(Add Microsoft Teams Endpoint)] をクリックします。

ステップ 5

エンドポイントの名前を入力します。

ステップ 6

[ウェブフックURL(Webhook URL)] フィールドに、前にコピーしたウェブフック URL を貼り付けます。

ステップ 7

[保存(Save)] をクリックします。確認コードがメッセージとして Microsoft Teams に送信されます。

ステップ 8

Microsoft Teams から確認コードをコピーし、Crosswork Cloud の [確認(Verify)] ダイアログボックスに貼り付けます。
[確認(Verify)] ウィンドウ

ステップ 9

エンドポイントを確認すると、そのエンドポイントがアクティブ状態に変わり、新しい通知が処理されます。

エンドポイントの確認コードの再送信

Crosswork Cloud Network Insights からの通知を受信するようにエンドポイントを設定したら、最初に確認コードを入力してエンドポイントを確認する必要があります。次の手順に従って、確認コードを再送信できます。

手順

ステップ 1

メインウィンドウで、[外部ルーティング分析(External Routing Analytics)] > [設定(Configure)] > [通知エンドポイント(Notification Endpoints)] の順にクリックします。

ステップ 2

以前に入力したエンドポイントの名前をクリックします。

ステップ 3

[確認(Verify)] をクリックします。

Crosswork Cloud Network Insights が確認コードを再送信します。

ステップ 4

Crosswork Cloud Network Insights から確認コードを受信したら、[確認コード(Verification Code)] フィールドにコードを入力し、[確認(Verify)] をクリックします。

通知メッセージの例

通知エンドポイントを設定すると、Crosswork Cloud Network Insights は指定したエンドポイントに通知メッセージを送信します。次の例は、各エンドポイントタイプのサンプルメッセージを示しています。

電子メールのエンドポイント通知の例

通知エンドポイントを設定し、タイプを [電子メール(Email)] に指定すると、アラーム条件が満たされた場合に、Crosswork Cloud Network Insights は次の例のような電子メールメッセージを送信します。

スラックのエンドポイント通知の例

通知エンドポイントを設定し、タイプに [Slack] を指定すると、アラーム条件が満たされたときに、Crosswork Cloud Network Insights は次の例のような Slack メッセージを送信します。

Microsoft Teams のエンドポイント通知の例

通知エンドポイントを設定し、タイプに [Microsoft Teams] を指定すると、アラーム条件が満たされたときに、Crosswork Cloud Network Insights は次の例のようなメッセージを送信します。

Cisco Webex のエンドポイント通知の例

通知エンドポイントを設定し、タイプに [Webex] を指定すると、アラーム条件が満たされたときに、Crosswork Cloud は次の例のような Webex メッセージを送信します。

アラームタイプ別 Amazon S3 と Google ストレージのエンドポイント通知の例

次のセクションでは、各アラームタイプの Amazon S3 と Googleストレージの通知ログメッセージの例を示します。

AS 発信元違反の例

次に、AS 発信元違反アラームに関する Amazon S3 と Google ストレージの通知ログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:02:19Z",
  "alarmId": "04aa5831-7e62-45cb-a123-3d5e9c019330",
  "clearedAt": "2023-02-04T03:01:41Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2,
    "originAsns": [
      1523
    ]
  },
  "monitoredPrefix": "31.1.1.0/24",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 6008,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 21
      },
      {
        "asn": 6009,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 22
      },
      {
        "asn": 6005,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asn": 6007,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 20
      },
      {
        "asn": 6002,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "asn": 6004,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 2,
        "peerIp": "10.11.12.2"
      },
      {
        "asn": 6001,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "asn": 6000,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      },
      {
        "asn": 6006,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 19
      },
      {
        "asn": 6003,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      }
    ],
    "allViolationPeersCount": 10
  },
  "orgName": "AutomationOnly5",
  "policyId": "963b86db-329d-4cba-a38a-3fc19ddd330d",
  "policyName": "02 - AS Origin Violation",
  "rule": "ALARM_RULE_AS_ORIGIN_VIOLATION",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "02 - AS Origin Violation"
  ],
  "transitionedAt": "2023-02-04T03:02:19Z"
}
{
  "activatedAt": "2023-02-04T03:02:19Z",
  "alarmId": "9ea271fb-1976-450f-b653-d3d188426b6e",
  "clearedAt": "2023-02-04T03:01:42Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2,
    "originAsns": [
      1523
    ]
  },
  "monitoredPrefix": "2002:1f01:100::/48",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 6009,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 30
      },
      {
        "asn": 6004,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 25
      },
      {
        "asn": 6001,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 23
      },
      {
        "asn": 6006,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 27
      },
      {
        "asn": 6000,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10"
      },
      {
        "asn": 6003,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 24
      },
      {
        "asn": 6005,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 26
      },
      {
        "asn": 6008,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 29
      },
      {
        "asn": 6007,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 28
      },
      {
        "asn": 6011,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 32
      },
      {
        "asn": 6002,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10"
      },
      {
        "asn": 6010,
        "at": "2023-02-04T03:00:58Z",
        "peerId": 31
      }
    ],
    "allViolationPeersCount": 12
  },
  "orgName": "AutomationOnly5",
  "policyId": "963b86db-329d-4cba-a38a-3fc19ddd330d",
  "policyName": "02 - AS Origin Violation",
  "rule": "ALARM_RULE_AS_ORIGIN_VIOLATION",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "02 - AS Origin Violation"
  ],
  "transitionedAt": "2023-02-04T03:02:19Z"
}

AS パス長違反の例

次に、AS パス長違反アラームに関する Amazon S3 と Google ストレージの通知ログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:09:32Z",
  "alarmId": "38a07db7-776e-4b4a-a186-b7d4bd9b045c",
  "clearedAt": "2023-02-04T03:08:53Z",
  "expected": {
    "maxAsPathLength": 2,
    "minAsPathLength": 1,
    "numPeersToClear": 1,
    "numPeersToTrigger": 2
  },
  "monitoredPrefix": "145.25.0.0/16",
  "observed": {
    "allViolationPeers": [
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 19
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 2,
        "peerIp": "10.11.12.2"
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 20
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 21
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 22
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      }
    ],
    "allViolationPeersCount": 10
  },
  "orgName": "AutomationOnly5",
  "policyId": "bc4298d2-1a52-4339-83e8-1d8932e1fe61",
  "policyName": "03 - AS Path Length Violation",
  "rule": "ALARM_RULE_AS_PATH_LENGTH_VIOLATION",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "03 - AS Path Length Violation"
  ],
  "transitionedAt": "2023-02-04T03:09:32Z"
}
{
  "activatedAt": "2023-02-04T03:09:32Z",
  "alarmId": "e44e6834-7877-435c-9068-169e56cae5aa",
  "clearedAt": "2023-02-04T03:08:53Z",
  "expected": {
    "maxAsPathLength": 2,
    "minAsPathLength": 1,
    "numPeersToClear": 1,
    "numPeersToTrigger": 2
  },
  "monitoredPrefix": "2002:9119::/48",
  "observed": {
    "allViolationPeers": [
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 23
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 24
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 25
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 26
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 27
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 28
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 29
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 30
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 31
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 32
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10"
      },
      {
        "asPath": [
          902,
          602,
          22
        ],
        "asPathLength": 3,
        "asn": 22,
        "at": "2023-02-04T03:06:32Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10"
      }
    ],
    "allViolationPeersCount": 12
  },
  "orgName": "AutomationOnly5",
  "policyId": "bc4298d2-1a52-4339-83e8-1d8932e1fe61",
  "policyName": "03 - AS Path Length Violation",
  "rule": "ALARM_RULE_AS_PATH_LENGTH_VIOLATION",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "03 - AS Path Length Violation"
  ],
  "transitionedAt": "2023-02-04T03:09:32Z"
}

DNS ルートサーバーの取り消しの例

次に、DNS ルートサーバーの取り消しアラームに関する Amazon S3 とGoogleストレージの通知ログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T06:16:17Z",
  "alarmId": "5161f679-8e4e-4b95-a979-1788b3444136",
  "monitoredPeer": {
    "peerIp": "2000::30:100:10",
    "peerName": "Root DNS IPv6",
    "sessionId": "9b3f0207-a484-465b-886b-0c8bbcefb8bc"
  },
  "observed": {
    "withdrawnPrefix": "2001:503:ba3e::/48"
  },
  "orgName": "AutomationOnly5",
  "policyId": "3fb1473d-a1cb-43f2-b232-6a3cb470051b",
  "policyName": "20 - DNS Root Server Withdrawal",
  "rule": "ALARM_RULE_DNS_ROOT_SERVER_WITHDRAWAL",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "transitionedAt": "2023-02-04T06:16:17Z"
}
{
  "activatedAt": "2023-02-04T06:16:17Z",
  "alarmId": "b87dc535-7151-4728-90f2-0b24b979d4b8",
  "monitoredPeer": {
    "peerIp": "10.31.32.1",
    "peerName": "Root DNS IPv4",
    "sessionId": "c5dcf2d2-99b7-4565-8b29-9b30f20ed2f7"
  },
  "observed": {
    "withdrawnPrefix": "198.41.0.0/24"
  },
  "orgName": "AutomationOnly5",
  "policyId": "3fb1473d-a1cb-43f2-b232-6a3cb470051b",
  "policyName": "20 - DNS Root Server Withdrawal",
  "rule": "ALARM_RULE_DNS_ROOT_SERVER_WITHDRAWAL",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "transitionedAt": "2023-02-04T06:16:17Z"
}

新しい AS パスのエッジの例

次に、新しい AS パスのエッジアラームに関する Amazon S3 通知と Google ストレージのログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:11:17Z",
  "alarmId": "4b9eb669-774d-4a6d-bed5-d559248953e8",
  "expected": {
    "numPeersToTrigger": 1
  },
  "monitoredPrefix": "88.88.109.0/24",
  "observed": {
    "allViolationPeers": [
      {
        "asPath": [
          916,
          700,
          620,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 1,
        "peerIp": "10.11.12.1",
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 620
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "2002:5858:6d00::/48",
              "88.88.109.0/24"
            ]
          },
          {
            "edgeId": {
              "fromAs": 620,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          621,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 19,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 621
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 621,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          619,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 2,
        "peerIp": "10.11.12.2",
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 619
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "2002:5858:6d00::/48",
              "88.88.109.0/24"
            ]
          },
          {
            "edgeId": {
              "fromAs": 619,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          622,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 20,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 622
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 622,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          623,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 21,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 623
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "2002:5858:6d00::/48",
              "88.88.109.0/24"
            ]
          },
          {
            "edgeId": {
              "fromAs": 623,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          624,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 22,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 624
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 624,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          618,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 3,
        "peerIp": "10.11.12.3",
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 618
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 618,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          617,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 4,
        "peerIp": "10.11.12.4",
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 617
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 617,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          616,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 5,
        "peerIp": "10.11.12.5",
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 616
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 616,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "2002:5858:6d00::/48",
              "88.88.109.0/24"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          615,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 7,
        "peerIp": "10.31.32.1",
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 615
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 615,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      }
    ],
    "allViolationPeersCount": 10
  },
  "orgName": "AutomationOnly5",
  "policyId": "3755ed13-6498-4cc6-9798-a1264d03b402",
  "policyName": "04 - New AS Path Edge",
  "rule": "ALARM_RULE_NEW_AS_PATH_EDGE",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "04 - New AS Path Edge"
  ],
  "transitionedAt": "2023-02-04T03:11:17Z"
}
{
  "activatedAt": "2023-02-04T03:11:17Z",
  "alarmId": "9a1ab970-144b-4256-a864-4eb26e698844",
  "expected": {
    "numPeersToTrigger": 1
  },
  "monitoredPrefix": "2002:5858:6d00::/48",
  "observed": {
    "allViolationPeers": [
      {
        "asPath": [
          916,
          700,
          616,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 23,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 616
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 616,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "2002:5858:6d00::/48",
              "88.88.109.0/24"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          618,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 24,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 618
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 618,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          619,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 25,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 619
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "2002:5858:6d00::/48",
              "88.88.109.0/24"
            ]
          },
          {
            "edgeId": {
              "fromAs": 619,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          620,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 26,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 620
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "2002:5858:6d00::/48",
              "88.88.109.0/24"
            ]
          },
          {
            "edgeId": {
              "fromAs": 620,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          621,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 27,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 621
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 621,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          622,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 28,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 622
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 622,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          623,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 29,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 623
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "2002:5858:6d00::/48",
              "88.88.109.0/24"
            ]
          },
          {
            "edgeId": {
              "fromAs": 623,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          624,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 30,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 624
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 624,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          625,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 31,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 625
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 1,
            "prefixCount": 1,
            "prefixList": [
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 625,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 1,
            "prefixCount": 1,
            "prefixList": [
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          626,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 32,
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 626
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 1,
            "prefixCount": 1,
            "prefixList": [
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 626,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 1,
            "prefixCount": 1,
            "prefixList": [
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          617,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10",
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 617
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 617,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      },
      {
        "asPath": [
          916,
          700,
          615,
          36
        ],
        "asn": 36,
        "at": "2023-02-04T01:34:59Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10",
        "suspiciousEdges": [
          {
            "edgeId": {
              "fromAs": 36,
              "toAs": 615
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          },
          {
            "edgeId": {
              "fromAs": 615,
              "toAs": 700
            },
            "firstSeen": "2023-02-04T01:34:59Z",
            "lastSeen": "2023-02-04T01:34:59Z",
            "peerCount": 2,
            "prefixCount": 2,
            "prefixList": [
              "88.88.109.0/24",
              "2002:5858:6d00::/48"
            ]
          }
        ]
      }
    ],
    "allViolationPeersCount": 12
  },
  "orgName": "AutomationOnly5",
  "policyId": "3755ed13-6498-4cc6-9798-a1264d03b402",
  "policyName": "04 - New AS Path Edge",
  "rule": "ALARM_RULE_NEW_AS_PATH_EDGE",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "04 - New AS Path Edge"
  ],
  "transitionedAt": "2023-02-04T03:11:17Z"
}

親集約の変更例

次に、親集約変更アラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T05:23:55Z",
  "alarmId": "928315c2-c804-47dc-bc52-e2282e605753",
  "expected": {
    "allowedAggregates": [
      "2002::/16",
      "2002::/17",
      "2002:57e8::/36"
    ],
    "numPeersToClear": 1,
    "numPeersToTrigger": 2,
    "originAsns": [
      1000
    ],
    "originAsnsUsage": "ALARM_USAGE_EXCLUDE"
  },
  "monitoredPrefix": "2002:57e8::/48",
  "observed": {
    "allViolationPeers": [
      {
        "peerId": 23
      },
      {
        "peerId": 24
      },
      {
        "peerId": 25
      },
      {
        "peerId": 26
      },
      {
        "peerId": 27
      },
      {
        "peerId": 28
      },
      {
        "peerId": 29
      },
      {
        "peerId": 30
      },
      {
        "peerId": 31
      },
      {
        "peerId": 32
      },
      {
        "peerId": 6
      },
      {
        "peerId": 8
      }
    ],
    "allViolationPeersCount": 12,
    "lastViolationPeers": [
      {
        "asn": 6002,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10"
      },
      {
        "asn": 6010,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 31
      },
      {
        "asn": 6009,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 30
      },
      {
        "asn": 6003,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 24
      },
      {
        "asn": 6011,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 32
      },
      {
        "asn": 6005,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 26
      },
      {
        "asn": 6007,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 28
      },
      {
        "asn": 6004,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 25
      },
      {
        "asn": 6006,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 27
      },
      {
        "asn": 6000,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10"
      },
      {
        "asn": 6001,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 23
      },
      {
        "asn": 6008,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 29
      }
    ],
    "lastViolationPeersCount": 12,
    "lastViolationPrefix": "2002:57e8::/36",
    "violationPrefixesCount": 3
  },
  "orgName": "AutomationOnly5",
  "policyId": "3dd434f4-92fe-447f-b7e8-129b09cff9da",
  "policyName": "17 - Parent Aggregate Change - Test 3",
  "rule": "ALARM_RULE_PARENT_AGGREGATE_CHANGE",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "17 - Parent Aggregate Change"
  ],
  "transitionedAt": "2023-02-04T05:23:55Z"
}
{
  "activatedAt": "2023-02-04T05:23:55Z",
  "alarmId": "c3d24f64-5814-463e-855f-da56545a621f",
  "expected": {
    "allowedAggregates": [
      "87.232.0.0/22"
    ],
    "numPeersToClear": 1,
    "numPeersToTrigger": 2,
    "originAsns": [
      1000
    ],
    "originAsnsUsage": "ALARM_USAGE_EXCLUDE"
  },
  "monitoredPrefix": "87.232.0.0/24",
  "observed": {
    "allViolationPeers": [
      {
        "peerId": 1
      },
      {
        "peerId": 19
      },
      {
        "peerId": 2
      },
      {
        "peerId": 20
      },
      {
        "peerId": 21
      },
      {
        "peerId": 22
      },
      {
        "peerId": 3
      },
      {
        "peerId": 4
      },
      {
        "peerId": 5
      },
      {
        "peerId": 7
      }
    ],
    "allViolationPeersCount": 10,
    "lastViolationPeers": [
      {
        "asn": 6004,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 2,
        "peerIp": "10.11.12.2"
      },
      {
        "asn": 6008,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 21
      },
      {
        "asn": 6009,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 22
      },
      {
        "asn": 6002,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "asn": 6003,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      },
      {
        "asn": 6005,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asn": 6006,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 19
      },
      {
        "asn": 6001,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "asn": 6000,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      },
      {
        "asn": 6007,
        "at": "2023-02-04T05:03:37Z",
        "peerId": 20
      }
    ],
    "lastViolationPeersCount": 10,
    "lastViolationPrefix": "87.232.0.0/22",
    "violationPrefixesCount": 1
  },
  "orgName": "AutomationOnly5",
  "policyId": "3dd434f4-92fe-447f-b7e8-129b09cff9da",
  "policyName": "17 - Parent Aggregate Change - Test 3",
  "rule": "ALARM_RULE_PARENT_AGGREGATE_CHANGE",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "17 - Parent Aggregate Change"
  ],
  "transitionedAt": "2023-02-04T05:23:55Z"
}

ピアでアドバタイズされたプレフィックス数の例

次に、ピアでアドバタイズされたプレフィックス数アラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T06:18:37Z",
  "alarmId": "139a7983-36ba-4d17-8371-2480290f3799",
  "expected": {
    "prefixCounts": [
      {
        "addressFamily": "ALARM_BGP_AF_IPV4",
        "maxPrefixes": 100,
        "minPrefixes": 10
      }
    ]
  },
  "monitoredPeer": {
    "ciscoPeerIp": "104.236.154.30",
    "ciscoPeerName": "RS06",
    "peerIp": "10.11.12.1",
    "peerName": "BGP-1",
    "sessionId": "de26c09c-15f6-435f-9044-c9a89fdc7bed"
  },
  "observed": {
    "prefixCounts": [
      {
        "addressFamily": "ALARM_BGP_AF_IPV4",
        "prefixCount": 2000
      }
    ]
  },
  "orgName": "AutomationOnly5",
  "policyId": "482de3d2-8550-4b84-a0ab-3b3e36f5869a",
  "policyName": "22 - Peer Advertised Prefix Count",
  "rule": "ALARM_RULE_ADVERTISED_PREFIX_COUNT",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "transitionedAt": "2023-02-04T06:18:37Z"
}

ピアの停止の例

次に、ピアの停止アラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T06:17:05Z",
  "alarmId": "b654ced0-5357-4eb7-b3c9-27cbd24a8f65",
  "monitoredPeer": {
    "ciscoPeerIp": "3.21.42.66",
    "ciscoPeerName": "RS95",
    "peerIp": "10.11.12.2",
    "peerName": "BGP-2",
    "sessionId": "29651423-e603-4a11-89b7-37500e40e562"
  },
  "observed": {
    "lastUpdatedAt": "2019-10-03T22:30:00Z"
  },
  "orgName": "AutomationOnly5",
  "policyId": "ff3b620d-33a9-49c0-9e33-b99b53c55b1d",
  "policyName": "21 - Peer Down",
  "rule": "ALARM_RULE_PEER_DOWN",
  "severity": "ALARM_SEVERITY_YELLOW",
  "state": "ALARM_STATE_ACTIVE",
  "transitionedAt": "2023-02-04T06:17:05Z"
}

プレフィックス アドバタイズメントの例

次に、プレフィックス アドバタイズメントアラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:16:25Z",
  "alarmId": "79222047-4954-4b6e-a339-9d01bfb06434",
  "clearedAt": "2023-02-04T03:15:47Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2
  },
  "monitoredPrefix": "218.56.100.0/28",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 19
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 2,
        "peerIp": "10.11.12.2"
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 20
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 21
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 22
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      }
    ],
    "allViolationPeersCount": 10
  },
  "orgName": "AutomationOnly5",
  "policyId": "4d4816b9-e579-4209-a907-8d909aafa1f0",
  "policyName": "05 - Prefix Advertisement",
  "rule": "ALARM_RULE_PREFIX_ADVERTISEMENT",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "05 - Prefix Advertisement"
  ],
  "transitionedAt": "2023-02-04T03:16:25Z"
}
{
  "activatedAt": "2023-02-04T03:16:25Z",
  "alarmId": "ba974865-7e94-4623-ad8f-d660acf7d69f",
  "clearedAt": "2023-02-04T03:15:47Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2
  },
  "monitoredPrefix": "2002:da38:6400::/48",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 23
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 24
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 25
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 26
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 27
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 28
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 29
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 30
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 31
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 32
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10"
      },
      {
        "asn": 20,
        "at": "2023-02-04T03:15:04Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10"
      }
    ],
    "allViolationPeersCount": 12
  },
  "orgName": "AutomationOnly5",
  "policyId": "4d4816b9-e579-4209-a907-8d909aafa1f0",
  "policyName": "05 - Prefix Advertisement",
  "rule": "ALARM_RULE_PREFIX_ADVERTISEMENT",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "05 - Prefix Advertisement"
  ],
  "transitionedAt": "2023-02-04T03:16:25Z"
}

プレフィックス取り消しの例

次に、プレフィックス取り消しアラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:20:36Z",
  "alarmId": "2e12713b-4ecf-4d59-868a-00f07aba47ae",
  "clearedAt": "2023-02-04T03:19:55Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2
  },
  "monitoredPrefix": "100.200.1.0/24",
  "observed": {
    "allViolationPeers": [
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 19
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 20
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 21
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 22
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      }
    ],
    "allViolationPeersCount": 9
  },
  "orgName": "AutomationOnly5",
  "policyId": "16105783-75c8-4c98-be71-b0a758645f41",
  "policyName": "06 - Prefix Withdrawal",
  "rule": "ALARM_RULE_PREFIX_WITHDRAWAL",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "06 - Prefix Withdrawal"
  ],
  "transitionedAt": "2023-02-04T03:20:36Z"
}
{
  "activatedAt": "2023-02-04T03:20:36Z",
  "alarmId": "3c4cf6e0-e6f2-475d-9030-4bc51a7e0550",
  "clearedAt": "2023-02-04T03:19:55Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2
  },
  "monitoredPrefix": "2002:64c8:100::/48",
  "observed": {
    "allViolationPeers": [
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 23
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 24
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 25
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 26
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 27
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 28
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 29
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 30
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 31
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 32
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10"
      },
      {
        "at": "2023-02-04T03:19:13Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10"
      }
    ],
    "allViolationPeersCount": 12
  },
  "orgName": "AutomationOnly5",
  "policyId": "16105783-75c8-4c98-be71-b0a758645f41",
  "policyName": "06 - Prefix Withdrawal",
  "rule": "ALARM_RULE_PREFIX_WITHDRAWAL",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "06 - Prefix Withdrawal"
  ],
  "transitionedAt": "2023-02-04T03:20:36Z"
}

禁止された IP プレフィックスの例

次に、禁止された IP プレフィックス(フル Bogons)アラームに関する Amazon S3 と Google ストレージの通知ログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T06:11:31Z",
  "alarmId": "a077c6cd-5a74-4378-8d60-e8acb39ae2c7",
  "clearedAt": "2023-02-04T06:09:26Z",
  "monitoredPeer": {
    "ciscoPeerIp": "104.236.154.30",
    "ciscoPeerName": "RS06",
    "peerIp": "10.11.12.5",
    "peerName": "FullBogon-1",
    "sessionId": "f5327ffb-221f-49d6-b8a2-2b812d02d35e"
  },
  "observed": {
    "lastViolationPeerPrefix": {
      "at": "2023-02-04T06:07:33Z",
      "bogonDetails": {
        "bogonType": "ALARM_BOGON_TYPE_FULL_BOGON",
        "prohibitedPrefixBlock": "5.44.248.0/21"
      },
      "prefix": "5.44.248.0/21"
    },
    "violationPrefixesCount": 1
  },
  "orgName": "AutomationOnly5",
  "policyId": "d011c5e4-54a1-41bb-8c7f-963d9caab208",
  "policyName": "19 - Prohibited IP Prefix - FullBogon",
  "rule": "ALARM_RULE_PROHIBITED_IP_PREFIX",
  "severity": "ALARM_SEVERITY_YELLOW",
  "state": "ALARM_STATE_ACTIVE",
  "transitionedAt": "2023-02-04T06:11:31Z"
}
{
  "activatedAt": "2023-02-04T06:11:31Z",
  "alarmId": "142659ed-15f1-4d60-b2d6-3d0da5c75b17",
  "clearedAt": "2023-02-04T06:09:26Z",
  "monitoredPeer": {
    "ciscoPeerIp": "2604:a880:1:20::2de:1001",
    "ciscoPeerName": "RS06",
    "peerIp": "2000::20:100:10",
    "peerName": "FullBogon-2",
    "sessionId": "639f069d-9ccd-46d0-b8b2-77054a199ce8"
  },
  "observed": {
    "lastViolationPeerPrefix": {
      "at": "2023-02-04T06:07:33Z",
      "bogonDetails": {
        "bogonType": "ALARM_BOGON_TYPE_FULL_BOGON",
        "prohibitedPrefixBlock": "2001:506:101::/48"
      },
      "prefix": "2001:506:101::/48"
    },
    "violationPrefixesCount": 1
  },
  "orgName": "AutomationOnly5",
  "policyId": "d011c5e4-54a1-41bb-8c7f-963d9caab208",
  "policyName": "19 - Prohibited IP Prefix - FullBogon",
  "rule": "ALARM_RULE_PROHIBITED_IP_PREFIX",
  "severity": "ALARM_SEVERITY_YELLOW",
  "state": "ALARM_STATE_ACTIVE",
  "transitionedAt": "2023-02-04T06:11:31Z"
}

ROA の有効期限の例

次に、ROA の有効期限アラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:27:02Z",
  "alarmId": "9f8eb76a-3eff-4e8b-809e-53bf0fd56ebe",
  "clearedAt": "2023-02-04T03:26:20Z",
  "expected": {
    "numPeersToTrigger": 1
  },
  "monitoredPrefix": "2002:101:7700::/48",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 23
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 24
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 25
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 26
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 27
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 28
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 29
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 30
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 31
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 32
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10"
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10"
      }
    ],
    "allViolationPeersCount": 12,
    "roas": [
      {
        "asn": 33,
        "maxLength": 48,
        "notAfter": "2023-02-17T03:49:38Z",
        "notBefore": "2022-02-03T03:49:38Z",
        "prefix": "2002:101:7700::/48",
        "rpkiStatus": "ALARM_ROA_VALID",
        "trustAnchor": "ALARM_AFRINIC"
      },
      {
        "asn": 33,
        "maxLength": 48,
        "notAfter": "2023-02-17T19:24:49Z",
        "notBefore": "2022-02-03T19:24:49Z",
        "prefix": "2002:101:7700::/48",
        "rpkiStatus": "ALARM_ROA_VALID",
        "trustAnchor": "ALARM_AFRINIC"
      },
      {
        "asn": 33,
        "maxLength": 48,
        "notAfter": "2023-02-18T01:34:59Z",
        "notBefore": "2022-02-04T01:34:58Z",
        "prefix": "2002:101:7700::/48",
        "rpkiStatus": "ALARM_ROA_VALID",
        "trustAnchor": "ALARM_AFRINIC"
      }
    ]
  },
  "orgName": "AutomationOnly5",
  "policyId": "d3d47d8c-fee7-45ab-baee-3a860128aa65",
  "policyName": "08 - ROA Expiry",
  "rule": "ALARM_RULE_ROA_EXPIRY",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "08 - ROA Expiry"
  ],
  "transitionedAt": "2023-02-04T03:27:02Z"
}
{
  "activatedAt": "2023-02-04T03:27:02Z",
  "alarmId": "e85e68ad-e16d-4892-9fb9-c71bd92f9caf",
  "clearedAt": "2023-02-04T03:26:20Z",
  "expected": {
    "numPeersToTrigger": 1
  },
  "monitoredPrefix": "210.176.151.0/24",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 19
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 2,
        "peerIp": "10.11.12.2"
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 20
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 21
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 22
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "asn": 33,
        "at": "2023-02-04T03:25:38Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      }
    ],
    "allViolationPeersCount": 10,
    "roas": [
      {
        "asn": 33,
        "maxLength": 24,
        "notAfter": "2023-02-17T03:49:38Z",
        "notBefore": "2022-02-03T03:49:38Z",
        "prefix": "210.176.151.0/24",
        "rpkiStatus": "ALARM_ROA_VALID",
        "trustAnchor": "ALARM_AFRINIC"
      },
      {
        "asn": 33,
        "maxLength": 24,
        "notAfter": "2023-02-17T19:24:49Z",
        "notBefore": "2022-02-03T19:24:49Z",
        "prefix": "210.176.151.0/24",
        "rpkiStatus": "ALARM_ROA_VALID",
        "trustAnchor": "ALARM_AFRINIC"
      },
      {
        "asn": 33,
        "maxLength": 24,
        "notAfter": "2023-02-18T01:34:58Z",
        "notBefore": "2022-02-04T01:34:58Z",
        "prefix": "210.176.151.0/24",
        "rpkiStatus": "ALARM_ROA_VALID",
        "trustAnchor": "ALARM_AFRINIC"
      }
    ]
  },
  "orgName": "AutomationOnly5",
  "policyId": "d3d47d8c-fee7-45ab-baee-3a860128aa65",
  "policyName": "08 - ROA Expiry",
  "rule": "ALARM_RULE_ROA_EXPIRY",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "08 - ROA Expiry"
  ],
  "transitionedAt": "2023-02-04T03:27:02Z"
}

ROA が見つからない例

次に、ROA が見つからない場合のアラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:22:07Z",
  "alarmId": "992266a8-bc34-4e6f-b396-6f0c956886ae",
  "monitoredPrefix": "2.2.2.2/32",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 19
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 2,
        "peerIp": "10.11.12.2"
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 20
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 21
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 22
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      }
    ],
    "allViolationPeersCount": 10
  },
  "orgName": "AutomationOnly5",
  "policyId": "588687b4-4e2c-44d6-8f93-56957139b4f4",
  "policyName": "07 - ROA Not Found",
  "rule": "ALARM_RULE_ROA_NOT_FOUND",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "07 - ROA Not Found"
  ],
  "transitionedAt": "2023-02-04T03:22:07Z"
}
{
  "activatedAt": "2023-02-04T03:22:07Z",
  "alarmId": "c7ff225d-f4e0-49d7-b607-f9d4f98b346f",
  "monitoredPrefix": "2002:202:202::/48",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 23
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 24
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 25
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 26
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 27
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 28
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 29
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 30
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 31
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 32
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10"
      },
      {
        "asn": 31,
        "at": "2023-02-04T01:34:58Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10"
      }
    ],
    "allViolationPeersCount": 12
  },
  "orgName": "AutomationOnly5",
  "policyId": "588687b4-4e2c-44d6-8f93-56957139b4f4",
  "policyName": "07 - ROA Not Found",
  "rule": "ALARM_RULE_ROA_NOT_FOUND",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "07 - ROA Not Found"
  ],
  "transitionedAt": "2023-02-04T03:22:07Z"
}

ROA 障害の例

次に、ROA 障害アラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:31:32Z",
  "alarmId": "358c3f57-80b8-4685-baec-7d913f39988e",
  "clearedAt": "2023-02-04T03:30:51Z",
  "expected": {
    "numPeersToTrigger": 1,
    "originAsns": [
      24,
      1136
    ]
  },
  "monitoredPrefix": "194.45.8.0/22",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 19
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 2,
        "peerIp": "10.11.12.2"
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 20
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 21
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 22
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      }
    ],
    "allViolationPeersCount": 10
  },
  "orgName": "AutomationOnly5",
  "policyId": "0510e174-1553-4c12-ac9e-be68118c8bd2",
  "policyName": "09 - ROA Failure",
  "rule": "ALARM_RULE_ROA_FAILURE",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "09 - ROA Failure"
  ],
  "transitionedAt": "2023-02-04T03:31:32Z"
}
{
  "activatedAt": "2023-02-04T03:31:32Z",
  "alarmId": "4e0b7398-ae54-408e-95fc-e7bb17a7d952",
  "clearedAt": "2023-02-04T03:30:51Z",
  "expected": {
    "numPeersToTrigger": 1,
    "originAsns": [
      24
    ]
  },
  "monitoredPrefix": "2002:c22d:800::/48",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 23
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 24
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 25
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 26
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 27
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 28
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 29
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 30
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 31
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 32
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10"
      },
      {
        "asn": 23,
        "at": "2023-02-04T03:30:09Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10"
      }
    ],
    "allViolationPeersCount": 12
  },
  "orgName": "AutomationOnly5",
  "policyId": "0510e174-1553-4c12-ac9e-be68118c8bd2",
  "policyName": "09 - ROA Failure",
  "rule": "ALARM_RULE_ROA_FAILURE",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "09 - ROA Failure"
  ],
  "transitionedAt": "2023-02-04T03:31:32Z"
}

サブプレフィックス アドバタイズメントの例

次に、サブプレフィックス アドバタイズメントアラームに関する Amazon S3 通知と Google ストレージのログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:48:07Z",
  "alarmId": "4f90ba05-d16e-4cb1-8bfe-f9bb54fc96dd",
  "clearedAt": "2023-02-04T03:47:26Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2,
    "originAsns": [
      754,
      755,
      1000,
      6000,
      6001,
      6002,
      6003,
      6004,
      6005,
      6006,
      6007,
      6008,
      6009,
      6010,
      6011,
      9541,
      9542,
      9543,
      12654,
      12655,
      28642,
      30175,
      45031,
      49622
    ],
    "originAsnsUsage": "ALARM_USAGE_IGNORE"
  },
  "monitoredPrefix": "2002:1764:100::/48",
  "observed": {
    "allViolationPeers": [
      {
        "peerId": 28
      },
      {
        "peerId": 29
      }
    ],
    "allViolationPeersCount": 2,
    "lastViolationPeers": [
      {
        "asn": 6000,
        "at": "2023-02-04T03:45:01Z",
        "peerId": 28
      },
      {
        "asn": 6001,
        "at": "2023-02-04T03:45:02Z",
        "peerId": 29
      }
    ],
    "lastViolationPeersCount": 2,
    "lastViolationPrefix": "2002:1764:100::/49",
    "violationPrefixesCount": 10
  },
  "orgName": "AutomationOnly5",
  "policyId": "634cc992-80f5-488e-bd42-bcb61217be9f",
  "policyName": "12 - Subprefix Advertisement - Default",
  "rule": "ALARM_RULE_SUBPREFIX_ADVERTISEMENT",
  "severity": "ALARM_SEVERITY_GRAY",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "12 - Subprefix Advertisement"
  ],
  "transitionedAt": "2023-02-04T03:48:07Z"
}
{
  "activatedAt": "2023-02-04T03:48:07Z",
  "alarmId": "6e1e50ff-e57f-4a2b-9814-7c5a71b01b1d",
  "clearedAt": "2023-02-04T03:47:26Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2,
    "originAsns": [
      754,
      755,
      1000,
      6000,
      6001,
      6002,
      6003,
      6004,
      6005,
      6006,
      6007,
      6008,
      6009,
      6010,
      6011,
      9541,
      9542,
      9543,
      12654,
      12655,
      28642,
      30175,
      45031,
      49622
    ],
    "originAsnsUsage": "ALARM_USAGE_IGNORE"
  },
  "monitoredPrefix": "23.100.1.0/24",
  "observed": {
    "allViolationPeers": [
      {
        "peerId": 1
      },
      {
        "peerId": 19
      }
    ],
    "allViolationPeersCount": 2,
    "lastViolationPeers": [
      {
        "asn": 6000,
        "at": "2023-02-04T03:45:01Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asn": 6001,
        "at": "2023-02-04T03:45:01Z",
        "peerId": 19
      }
    ],
    "lastViolationPeersCount": 2,
    "lastViolationPrefix": "23.100.1.0/25",
    "violationPrefixesCount": 8
  },
  "orgName": "AutomationOnly5",
  "policyId": "634cc992-80f5-488e-bd42-bcb61217be9f",
  "policyName": "12 - Subprefix Advertisement - Default",
  "rule": "ALARM_RULE_SUBPREFIX_ADVERTISEMENT",
  "severity": "ALARM_SEVERITY_GRAY",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "12 - Subprefix Advertisement"
  ],
  "transitionedAt": "2023-02-04T03:48:07Z"
}

予期しない AS プレフィックスの例

次に、予期しない AS プレフィックスアラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T02:58:11Z",
  "alarmId": "6a6be977-ecf3-423c-bf4e-fc9118659a69",
  "clearedAt": "2023-02-04T02:57:43Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2
  },
  "monitoredAsn": 601,
  "observed": {
    "allViolationPeers": [
      {
        "peerId": 1
      },
      {
        "peerId": 2
      },
      {
        "peerId": 3
      },
      {
        "peerId": 4
      },
      {
        "peerId": 5
      },
      {
        "peerId": 7
      },
      {
        "peerId": 19
      },
      {
        "peerId": 20
      },
      {
        "peerId": 21
      },
      {
        "peerId": 22
      }
    ],
    "allViolationPeersCount": 10,
    "lastViolationPeers": [
      {
        "asn": 601,
        "at": "2023-02-04T02:55:11Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asn": 601,
        "at": "2023-02-04T02:55:11Z",
        "peerId": 19
      },
      {
        "asn": 601,
        "at": "2023-02-04T02:55:11Z",
        "peerId": 2,
        "peerIp": "10.11.12.2"
      },
      {
        "asn": 601,
        "at": "2023-02-04T02:55:11Z",
        "peerId": 20
      },
      {
        "asn": 601,
        "at": "2023-02-04T02:55:11Z",
        "peerId": 21
      },
      {
        "asn": 601,
        "at": "2023-02-04T02:55:11Z",
        "peerId": 22
      },
      {
        "asn": 601,
        "at": "2023-02-04T02:55:11Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      },
      {
        "asn": 601,
        "at": "2023-02-04T02:55:11Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "asn": 601,
        "at": "2023-02-04T02:55:11Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "asn": 601,
        "at": "2023-02-04T02:55:11Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      }
    ],
    "lastViolationPeersCount": 10,
    "lastViolationPrefix": "101.1.1.0/24",
    "violationPrefixesCount": 1
  },
  "orgName": "AutomationOnly5",
  "policyId": "5e3288f9-6e6d-4df7-a862-b638e2d17b9f",
  "policyName": "01 - Unexpected AS Prefix",
  "rule": "ALARM_RULE_UNEXPECTED_AS_PREFIX",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "asn policy",
    "01 - Unexpected AS Prefix"
  ],
  "transitionedAt": "2023-02-04T02:58:11Z"
}

アップストリーム AS の変更例

次に、アップストリーム AS 変更アラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:36:49Z",
  "alarmId": "82f76592-14ca-42ef-b446-149c1d4be731",
  "clearedAt": "2023-02-04T03:36:09Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2,
    "upstreamAsns": [
      12345
    ]
  },
  "monitoredPrefix": "2002:ab64:1100::/48",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 6504,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10"
      },
      {
        "asn": 6503,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 23
      },
      {
        "asn": 6508,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 27
      },
      {
        "asn": 6502,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10"
      },
      {
        "asn": 6509,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 28
      },
      {
        "asn": 6505,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 24
      },
      {
        "asn": 6510,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 29
      },
      {
        "asn": 6507,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 26
      },
      {
        "asn": 6512,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 31
      },
      {
        "asn": 6513,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 32
      },
      {
        "asn": 6506,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 25
      },
      {
        "asn": 6511,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 30
      }
    ],
    "allViolationPeersCount": 12
  },
  "orgName": "AutomationOnly5",
  "policyId": "c37b83be-0213-4bb2-b391-7f02b3cec061",
  "policyName": "10 - Upstream AS Change",
  "rule": "ALARM_RULE_UPSTREAM_AS_CHANGE",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "10 - Upstream AS Change"
  ],
  "transitionedAt": "2023-02-04T03:36:49Z"
}
{
  "activatedAt": "2023-02-04T03:36:49Z",
  "alarmId": "a778b4be-e23f-42d8-8880-5402f59c1495",
  "clearedAt": "2023-02-04T03:36:09Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2,
    "upstreamAsns": [
      12345
    ]
  },
  "monitoredPrefix": "171.100.17.0/24",
  "observed": {
    "allViolationPeers": [
      {
        "asn": 6505,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      },
      {
        "asn": 6503,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "asn": 6504,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "asn": 6509,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 20
      },
      {
        "asn": 6508,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 19
      },
      {
        "asn": 6507,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asn": 6511,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 22
      },
      {
        "asn": 6502,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      },
      {
        "asn": 6510,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 21
      },
      {
        "asn": 6506,
        "at": "2023-02-04T03:33:54Z",
        "peerId": 2,
        "peerIp": "10.11.12.2"
      }
    ],
    "allViolationPeersCount": 10
  },
  "orgName": "AutomationOnly5",
  "policyId": "c37b83be-0213-4bb2-b391-7f02b3cec061",
  "policyName": "10 - Upstream AS Change",
  "rule": "ALARM_RULE_UPSTREAM_AS_CHANGE",
  "severity": "ALARM_SEVERITY_RED",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "10 - Upstream AS Change"
  ],
  "transitionedAt": "2023-02-04T03:36:49Z"
}

有効な AS パスの例

次に、有効な AS パスアラームに関する Amazon S3 通知と Google ストレージ通知のログメッセージ例を示します。 

{
  "activatedAt": "2023-02-04T03:42:08Z",
  "alarmId": "7cc0e8d0-cef5-422f-a9b9-e6dd227e2bfc",
  "clearedAt": "2023-02-04T03:41:08Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2,
    "validAsPathPattern": "108 (999|400) 705"
  },
  "monitoredPrefix": "2002:dc45:500::/48",
  "observed": {
    "allViolationPeers": [
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 23
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 24
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 25
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 26
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 27
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 28
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 29
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 30
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 31
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 32
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 6,
        "peerIp": "2000::20:100:10"
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 8,
        "peerIp": "2000::30:100:10"
      }
    ],
    "allViolationPeersCount": 12
  },
  "orgName": "AutomationOnly5",
  "policyId": "1b1d7a95-1104-4434-8f72-33ba216a7e7f",
  "policyName": "11 - Valid AS Path",
  "rule": "ALARM_RULE_VALID_AS_PATH_VIOLATION",
  "severity": "ALARM_SEVERITY_YELLOW",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "11 - Valid AS Path"
  ],
  "transitionedAt": "2023-02-04T03:42:08Z"
}
{
  "activatedAt": "2023-02-04T03:42:08Z",
  "alarmId": "86304e9c-50ce-4ec2-89a2-2c84ab10658b",
  "clearedAt": "2023-02-04T03:41:08Z",
  "expected": {
    "numPeersToClear": 1,
    "numPeersToTrigger": 2,
    "validAsPathPattern": "108 (999|400) 705"
  },
  "monitoredPrefix": "220.69.5.0/24",
  "observed": {
    "allViolationPeers": [
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 1,
        "peerIp": "10.11.12.1"
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 19
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 2,
        "peerIp": "10.11.12.2"
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 20
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 21
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 22
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 3,
        "peerIp": "10.11.12.3"
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 4,
        "peerIp": "10.11.12.4"
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 5,
        "peerIp": "10.11.12.5"
      },
      {
        "asPath": [
          108,
          500,
          755
        ],
        "asn": 755,
        "at": "2023-02-04T03:39:27Z",
        "peerId": 7,
        "peerIp": "10.31.32.1"
      }
    ],
    "allViolationPeersCount": 10
  },
  "orgName": "AutomationOnly5",
  "policyId": "1b1d7a95-1104-4434-8f72-33ba216a7e7f",
  "policyName": "11 - Valid AS Path",
  "rule": "ALARM_RULE_VALID_AS_PATH_VIOLATION",
  "severity": "ALARM_SEVERITY_YELLOW",
  "state": "ALARM_STATE_ACTIVE",
  "tags": [
    "common tag",
    "prefix policy",
    "11 - Valid AS Path"
  ],
  "transitionedAt": "2023-02-04T03:42:08Z"
}