mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
13429 Commits
28 Branches
Tree: 4582ebe807
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4582ebe807'
${ noResults }
rspamd/utils/asn.pl

asn.pl 6.9KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257 
  1. #!/usr/bin/env perl

  2. 

  3. use warnings;

  4. use strict;

  5. use Pod::Usage;

  6. use Getopt::Long;

  7. use File::Fetch;

  8. use LWP::Simple;

  9. use PerlIO::gzip;

  10. use File::Basename;

  11. use Net::MRT;

  12. use URI;

  13. use Data::Dumper;

  14. 

  15. $LWP::Simple::ua->show_progress(1);

  16. $Net::MRT::USE_RFC4760 = -1;

  17. 

  18. my %config = (

  19.     asn_sources => [

  20.         'ftp://ftp.arin.net/pub/stats/arin/delegated-arin-extended-latest',

  21.         'ftp://ftp.ripe.net/ripe/stats/delegated-ripencc-latest',

  22.         'ftp://ftp.afrinic.net/pub/stats/afrinic/delegated-afrinic-latest',

  23.         'ftp://ftp.apnic.net/pub/stats/apnic/delegated-apnic-latest',

  24.         'ftp://ftp.lacnic.net/pub/stats/lacnic/delegated-lacnic-latest'

  25.     ],

  26.     bgp_sources => ['http://data.ris.ripe.net/rrc00/latest-bview.gz']

  27. );

  28. 

  29. my $download_asn    = 0;

  30. my $download_bgp    = 0;

  31. my $download_target = "./";

  32. my $help            = 0;

  33. my $man             = 0;

  34. my $v4              = 1;

  35. my $v6              = 1;

  36. my $parse           = 1;

  37. my $v4_zone         = "asn.rspamd.com";

  38. my $v6_zone         = "asn6.rspamd.com";

  39. my $v4_file         = "asn.zone";

  40. my $v6_file         = "asn6.zone";

  41. my $ns_servers      = [ "asn-ns.rspamd.com", "asn-ns2.rspamd.com" ];

  42. 

  43. GetOptions(

  44.     "download-asn" => \$download_asn,

  45.     "download-bgp" => \$download_bgp,

  46.     "4!"           => \$v4,

  47.     "6!"           => \$v6,

  48.     "parse!"       => \$parse,

  49.     "target=s"     => \$download_target,

  50.     "zone-v4=s"    => \$v4_zone,

  51.     "zone-v6=s"    => \$v6_zone,

  52.     "file-v4=s"    => \$v4_file,

  53.     "file-v6=s"    => \$v6_file,

  54.     "ns-server=s@" => \$ns_servers,

  55.     "help|?"       => \$help,

  56.     "man"          => \$man

  57. ) or pod2usage(2);

  58. 

  59. pod2usage(1) if $help;

  60. pod2usage( -exitval => 0, -verbose => 2 ) if $man;

  61. 

  62. sub download_file {

  63.     my ($u) = @_;

  64. 

  65.     print "Fetching $u\n";

  66.     my $ff = File::Fetch->new( uri => $u );

  67.     my $where = $ff->fetch( to => $download_target ) or die $ff->error;

  68. 

  69.     return $where;

  70. }

  71. 

  72. if ($download_asn) {

  73.     foreach my $u ( @{ $config{'asn_sources'} } ) {

  74.         download_file($u);

  75.     }

  76. }

  77. 

  78. if ($download_bgp) {

  79.     foreach my $u ( @{ $config{'bgp_sources'} } ) {

  80.         download_file($u);

  81.     }

  82. }

  83. 

  84. if ( !$parse ) {

  85.     exit 0;

  86. }

  87. 

  88. my $v4_fh;

  89. my $v6_fh;

  90. 

  91. if ($v4) {

  92.     open( $v4_fh, ">", $v4_file ) or die "Cannot open $v4_file for writing: $!";

  93.     print $v4_fh "\$SOA 43200 $ns_servers->[0] support.rspamd.com 0 600 300 86400 300\n";

  94.     foreach my $ns ( @{$ns_servers} ) {

  95.         print $v4_fh "\$NS 43200 $ns\n";

  96.     }

  97. }

  98. if ($v6) {

  99.     open( $v6_fh, ">", $v6_file ) or die "Cannot open $v6_file for writing: $!";

  100.     print $v6_fh "\$SOA 43200 $ns_servers->[0] support.rspamd.com 0 600 300 86400 300\n";

  101.     foreach my $ns ( @{$ns_servers} ) {

  102.         print $v6_fh "\$NS 43200 $ns\n";

  103.     }

  104. }

  105. 

  106. # Now load BGP data

  107. my $networks = {};

  108. 

  109. foreach my $u ( @{ $config{'bgp_sources'} } ) {

  110.     my $parsed = URI->new($u);

  111.     my $fname  = $download_target . '/' . basename( $parsed->path );

  112.     open( my $fh, "<:gzip", $fname )

  113.       or die "Cannot open $fname: $!";

  114. 

  115.     while ( my $dd = eval { Net::MRT::mrt_read_next($fh) } ) {

  116.         if ( $dd->{'prefix'} && $dd->{'bits'} ) {

  117.             next if $dd->{'subtype'} == 2 and !$v4;

  118.             next if $dd->{'subtype'} == 4 and !$v6;

  119.             my $entry = $dd->{'entries'}->[0];

  120.             my $net   = $dd->{'prefix'} . '/' . $dd->{'bits'};

  121.             if ( $entry && $entry->{'AS_PATH'} ) {

  122.                 my $as = $entry->{'AS_PATH'}->[-1];

  123.                 if ( ref($as) eq "ARRAY" ) {

  124.                     $as = @{$as}[0];

  125.                 }

  126. 

  127.                 if ( !$networks->{$as} ) {

  128.                     if ( $dd->{'subtype'} == 2 ) {

  129.                         $networks->{$as} = { nets_v4 => [$net], nets_v6 => [] };

  130.                     }

  131.                     else {

  132.                         $networks->{$as} = { nets_v6 => [$net], nets_v4 => [] };

  133.                     }

  134.                 }

  135.                 else {

  136.                     if ( $dd->{'subtype'} == 2 ) {

  137.                         push @{ $networks->{$as}->{'nets_v4'} }, $net;

  138.                     }

  139.                     else {

  140.                         push @{ $networks->{$as}->{'nets_v6'} }, $net;

  141.                     }

  142.                 }

  143.             }

  144.         }

  145.     }

  146. }

  147. 

  148. # Now roughly detect countries

  149. foreach my $u ( @{ $config{'asn_sources'} } ) {

  150.     my $parsed = URI->new($u);

  151.     my $fname  = $download_target . '/' . basename( $parsed->path );

  152.     open( my $fh, "<", $fname ) or die "Cannot open $fname: $!";

  153. 

  154.     while (<$fh>) {

  155.         next if /^\#/;

  156.         chomp;

  157.         my @elts = split /\|/;

  158. 

  159.         if ( $elts[2] eq 'asn' && $elts[3] ne '*' ) {

  160.             my $as_start = int( $elts[3] );

  161.             my $as_end   = $as_start + int( $elts[4] );

  162. 

  163.             for ( my $as = $as_start ; $as < $as_end ; $as++ ) {

  164.                 my $real_as = $as;

  165. 

  166.                 if ( ref($as) eq "ARRAY" ) {

  167.                     $real_as = @{$as}[0];

  168.                 }

  169. 

  170.                 if ( $networks->{"$real_as"} ) {

  171.                     $networks->{"$real_as"}->{'country'} = $elts[1];

  172.                     $networks->{"$real_as"}->{'rir'}     = $elts[0];

  173.                 }

  174.             }

  175.         }

  176.     }

  177. }

  178. 

  179. while ( my ( $k, $v ) = each( %{$networks} ) ) {

  180.     if ($v4) {

  181.         foreach my $n ( @{ $v->{'nets_v4'} } ) {

  182. 

  183.             # "15169 | 8.8.8.0/24 | US | arin |" for 8.8.8.8

  184.             if ( $v->{'country'} ) {

  185.                 printf $v4_fh "%s %s|%s|%s|%s|\n", $n, $k, $n, $v->{'country'}, $v->{'rir'};

  186.             }

  187.             else {

  188.                 printf $v4_fh "%s %s|%s|%s|%s|\n", $n, $k, $n, 'UN', 'UN';

  189.             }

  190.         }

  191.     }

  192.     if ($v6) {

  193.         foreach my $n ( @{ $v->{'nets_v6'} } ) {

  194. 

  195.             # "15169 | 8.8.8.0/24 | US | arin |" for 8.8.8.8

  196.             if ( $v->{'country'} ) {

  197.                 printf $v6_fh "%s %s|%s|%s|%s|\n", $n, $k, $n, $v->{'country'}, $v->{'rir'};

  198.             }

  199.             else {

  200.                 printf $v6_fh "%s %s|%s|%s|%s|\n", $n, $k, $n, 'UN', 'UN';

  201.             }

  202.         }

  203.     }

  204. }

  205. 

  206. __END__

  207. 

  208. =head1 NAME

  209. 

  210. asn.pl - download and parse ASN data for Rspamd

  211. 

  212. =head1 SYNOPSIS

  213. 

  214. asn.pl [options]

  215. 

  216.  Options:

  217.    --download-asn         Download ASN data from RIR

  218.    --download-bgp         Download GeoIP data from Maxmind

  219.    --target               Where to download files (default: current dir)

  220.    --zone-v4              IPv4 zone (default: asn.rspamd.com)

  221.    --zone-v6              IPv6 zone (default: asn6.rspamd.com)

  222.    --file-v4              IPv4 zone file (default: ./asn.zone)

  223.    --file-v6              IPv6 zone (default: ./asn6.zone)

  224.    --help                 Brief help message

  225.    --man                  Full documentation

  226. 

  227. =head1 OPTIONS

  228. 

  229. =over 8

  230. 

  231. =item B<--download-asn>

  232. 

  233. Download ASN data from RIR.

  234. 

  235. =item B<--download-bgp>

  236. 

  237. Download GeoIP data from Ripe

  238. 

  239. =item B<--target>

  240. 

  241. Specifies where to download files.

  242. 

  243. =item B<--help>

  244. 

  245. Print a brief help message and exits.

  246. 

  247. =item B<--man>

  248. 

  249. Prints the manual page and exits.

  250. 

  251. =back

  252. 

  253. =head1 DESCRIPTION

  254. 

  255. B<asn.pl> is intended to download ASN data and GeoIP data and create a rbldnsd zone.

  256. 

  257. =cut