FORT monitoring/visibility

Jeroen Massar jeroen at
Wed Oct 27 07:39:28 UTC 2021

> On 20211027, at 09:26, Lukas Tribus <lukas at> wrote:
> On Wed, 27 Oct 2021 at 08:47, Mark Tinka <mark at> wrote:
>> On 10/27/21 01:58, Randy Bush wrote:
>>> my old DRL RP instances produce MRTG graphs etc of the CA
>>> fetching side, though nothing on the rpki-rtr side.
>> Randy, I actually have an ongoing discussion with the Fort developers
>> about this after a BGPSec bug left me with stale VRP's for several days,
>> with no clear indication that Fort had "kind of" crashed and "not fully"
>> crashed (fair point, I need to work on better internal monitoring of
>> Fort, as well).
> That's the reason I preached about stale RTR servers before:
> (the latter is a check against IOS XR devices via NETCONF which makes
> some sanity checks, absolute and relative)

Lukas, thanks for these, will align my own checks with the details you check for.

Do tag your repo's with a "RPKI" tag and similar so that it is easier to find these kind of tools!

Tooling is severely lacking in the RPKI space, in numbers and quality, thus any tool like this helps.


More information about the NANOG mailing list