Giter Site home page Giter Site logo

scouter's Introduction

Scouter

Scouter is a simple containerized API that allows you to perform various troubleshooting utilities remotely.

It runs common Linux based troubleshooting utilities such as ping, traceroute and a few others that are documented further on. These utilities support multiple options, so creating specific types of tests is very easy.

It deploys easily to any container infrastructure.

The most powerful aspect of Scouter is its automation and monitoring potential.

Getting Started

These instructions cover building and using the docker container.

Requirements

You'll need docker installed in order to run this container.

You'll also need to sign up for a GeoLite2 account and generate a license key. License keys can be generated free of charge and are used to authorize access to download MaxMind databases.

The GeoLite2-ASN MaxMind database is used to translate source IP addresses in both the traceroute and dns_traceroute utilities into their associated Autonomous System Numbers.

Building From Source

Run the following to build the Scouter container from source.

git clone https://github.com/stackpath/scouter.git
docker build -t scouter .

Pull from DockerHub

If you'd like to skip building the container from source then pull the latest version of Scouter from Docker Hub:

Coming soon!

Environment Variables

Required Variables

  • SCOUTER_API_SECRET - Specify the shared API secret to be used to authenticate every API call.
  • MMDB_LICENSE_KEY - Specify one of your valid GeoLite2 license keys to be used when pulling the latest GeoLite2-ASN.mmdb.

Optional Variables

  • SCOUTER_MAX_TEST_COUNT - Specify the maximum number of individual tests in a single test payload. Defaults to 10.
  • SCOUTER_MAX_PROCESS_COUNT - Specify the maximum number of parallel processes to be used in test execution. Defaults to 10.
  • API_PORT - Specify the port that Nginx will be listening on. Defaults to 8000.
  • UWSGI_WORKERS - Specify the number of Uwsgi worker processes to use. Defaults to 3.
  • UWSGI_CACHE_ITEMS - Specify the maximum number of Uwsgi cache items. Defaults to 100.
  • UWSGI_CACHE_BLOCKSIZE - Specify the maximum Uwsgi cache size. Defaults to 1000000.
  • BUP_PROXY_TTL - Specify the maximum amount of time that a BUP proxy is allowed to live. Defaults to 300 seconds.
  • BUP_PROXY_PORT_RANGE - Specify the range of ports reserved for BUP proxies. Also serves a pseudo rate limiter. Defaults to 9001-9005.

The REST API

First, start the Scouter container:

$ docker run --rm --name "scouter" -e "SCOUTER_API_SECRET=secret" -p 8000:8000 scouter

Once started, ensure that everything is working correctly by checking the /api/v1.0/status endpoint:

$ curl -X GET -H "Authorization: secret" "http://localhost:8000/api/v1.0/status" | jq

This produces a response that contains internal information about the Scouter service.

{
  "total_requests": 0,
  "worker_status": [
    {
      "avg_rt": 0,
      "delta_requests": 0,
      "exceptions": 0,
      "id": 1,
      "last_spawn": 1569856797,
      "pid": 41,
      "requests": 0,
      "respawn_count": 0,
      "rss": 0,
      "running_time": 0,
      "signals": 0,
      "status": "busy",
      "tx": 0,
      "vsz": 0
    },
    {
      "avg_rt": 0,
      "delta_requests": 0,
      "exceptions": 0,
      "id": 2,
      "last_spawn": 1569856797,
      "pid": 42,
      "requests": 0,
      "respawn_count": 0,
      "rss": 0,
      "running_time": 0,
      "signals": 0,
      "status": "idle",
      "tx": 0,
      "vsz": 0
    },
    {
      "avg_rt": 0,
      "delta_requests": 0,
      "exceptions": 0,
      "id": 3,
      "last_spawn": 1569856797,
      "pid": 43,
      "requests": 0,
      "respawn_count": 0,
      "rss": 0,
      "running_time": 0,
      "signals": 0,
      "status": "idle",
      "tx": 0,
      "vsz": 0
    }
  ]
}

Once you've confirmed the API is up and running you can execute tests. Scouter supports the ability to send multiple tests in a single payload. These tests are executed in parallel, the number of which is configured with the SCOUTER_MAX_THREAD_COUNT environment variable.

Here's an example of how to create a new test to perform both an http_request and a dns_lookup:

First start by creating a test via POST:

$ curl -X POST \
 -H "Authorization: secret" \
 -H "Content-Type: application/json" \
 -d '{"http_request": [{"url": "example.com"}], "dns_lookup": [{"qname": "example.com"}]}' \
 "http://localhost:8000/api/v1.0/tests" | jq

This command returns a receipt that's used to retrieve test results:

{
  "receipt": "78e473ed3397c8fb02b9c9c9b21a9ae1"
}

Pass the test ID via the receipt parameter in a subsequent API call:

$ curl -X GET \
 -H "Authorization: secret" \
 "http://localhost:8000/api/v1.0/tests?receipt=78e473ed3397c8fb02b9c9c9b21a9ae1" | jq

The response contains the test result's details:

{
  "is_running": false,
  "receipt": "c37f83382242675804820562d2a44210",
  "results": {
    "dns_lookup": [
      {
        "failed": false,
        "id": "38e618",
        "message": null,
        "result": {
          "answer": [
            {
              "rclass": "IN",
              "rdata": "93.184.216.34",
              "rdlen": null,
              "rrname": "example.com.",
              "ttl": 86400,
              "type": "A"
            }
          ],
          "elapsed_time": 0.06239771842956543,
          "failed": false,
          "ns": "169.254.169.254",
          "question": {
            "qclass": "IN",
            "qname": "example.com.",
            "qtype": "A"
          },
          "rcode": "ok",
          "timeout_count": 0
        }
      }
    ],
    "http_request": [
      {
        "failed": false,
        "id": "4051b9",
        "message": null,
        "result": {
          "comment": null,
          "failed": false,
          "headers": {
            "accept-ranges": "bytes",
            "age": "325974",
            "cache-control": "max-age=604800",
            "content-encoding": "gzip",
            "content-length": "648",
            "content-type": "text/html; charset=UTF-8",
            "date": "Wed, 05 Feb 2020 19:57:20 GMT",
            "etag": "\"3147526947\"",
            "expires": "Wed, 12 Feb 2020 19:57:20 GMT",
            "last-modified": "Thu, 17 Oct 2019 07:18:26 GMT",
            "server": "ECS (oxr/830C)",
            "x-cache": "HIT"
          },
          "method": "HEAD",
          "reason": "OK",
          "speed_download": 0,
          "status": 200,
          "time_appconnect": "0.000",
          "time_connect": "0.018",
          "time_namelookup": "0.016",
          "time_starttransfer": "0.020",
          "time_total": "0.023",
          "url": "example.com",
          "version": "1.1"
        }
      }
    ]
  }
}

There is a lot of data from these two tests. Use a tool like jq to manually parse the output.

Test results can also be deleted. Results automatically expire in 10 minutes if not deleted manually:

$ curl -X DELETE \
 -H "Authorization: secret" \
 "http://localhost:8000/api/v1.0/tests?receipt=78e473ed3397c8fb02b9c9c9b21a9ae1" | jq

Test deletions should produce a success message:

{
  "message": "Provided 'receipt' has been successfully deleted."
}

Endpoints

Description HTTP method Request path
Create a new test. POST /api/v1.0/tests
Retrieve test results. GET /api/v1.0/tests?receipt=receipt_id
Delete test results. DELETE /api/v1.0/tests?receipt=receipt_id
Retrieve API status. GET /api/v1.0/status

Supported Test Types and Options

Test type Required Optional
browser_request * url - The webpage URL to attempt to load via the emulated browser.

* id - Custom identifier for the test. Defaults to a random token.

* driver - The browser driver to use in the request. Defaults to "chrome".

* headers - A key/value dict of HTTP request headers to inject. Defaults to None.
http_request * url - The URL to cURL.

* id - Custom identifier for the test. Defaults to a random token.

* version - Specify the HTTP version to use when performing an HTTP request. Defaults to 1.1 if not specified.

* resolve - Specify to specify the resolved IP address for the provided domain in the url arg.

* headers - Specify a list of HTTP header to inject into the request body.

* method - Specify the HTTP method. Defaults to GET.

* ignore_ssl - Specify whether or not to disable SSL checks. Defaults to False.
dns_lookup * qname - The Domain name that you would like perform a DNS lookup for.

* id - Custom identifier for the test. Defaults to a random token.

* ns - The nameserver to use when querying the provided domain. If not specified we will parse the on-disk /etc/resolv.conf file for the listed nameservers and use those for querying.

* rdtype - Specify the DNS record type to query for.
dns_traceroute * qname - The domain name to use when crafting the DNS UDP packet.

* id - Custom identifier for the test. Defaults to a random token.

* ns - The nameserver that will be traced to. If not specified we will parse the on-disk /etc/resolv.conf file for the listed nameservers and use the first entry.

* max_ttl - Specify the max time-to-live (max number of hops). Defaults to 32. Max value of 32.
ping * dst - The destination address to ping. Can be either a FQDN or an IP address.

* id - Custom identifier for the test. Defaults to a random token.

* count - Specify the number of ping packets to send in a single test. Defaults to 10. Max value of 20.

* payload_size - Specify the ICMP packet's payload size. Defaults to 56. Max value of 1472.
traceroute * dst - The destination address to trace to. Can be either a FQDN or an IP address.

* id - Custom identifier for the test. Defaults to a random token.

* proto - Specify the transport protocol to use in the traceroute. Defaults to ICMP.

* dport - Specify the destination port. Defaults to 80 if proto is TCP, and None if ICMP.

* payload_size - Specify the ICMP/TCP packet's payload size. Defaults to 56. Max value of 1472.

* max_ttl - Specify the max time-to-live (max number of hops). Defaults to 32. Max value of 32.

Built With

Authors

Additional Notes

This project is written in Python Version 3.7.3 and uses the PEP 8 style guide. The use of a code linter such as Pylint is highly recommended to keep the code as consistent as possible. All docstrings and comments follow the Chromium Python Style Guidelines.

scouter's People

Contributors

aaroncouch avatar dependabot[bot] avatar klaude avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar

Forkers

klaude mskf3000 rodolfocdsantos

scouter's Issues

Scouter should return failed = True on negative http responses from the http_request utility

Is your feature request related to a problem? Please describe.
The current version of Scouter will return failed = False on http requests resulting in a negative response i.e a 4xx or 5xx status code.

example:

{
  "is_running": false,
  "receipt": "27950074fc44113307bd090231a6231e",
  "results": {
    "http_request": [
      {
        "failed": false,
        "id": "2b9315",
        "message": null,
        "result": {
          "comment": null,
          "failed": false,
          "headers": {
            "accept-ranges": "bytes",
            "cache-control": "max-age=0",
            "connection": "close",
            "content-length": "0",
            "date": "Wed, 27 May 2020 15:23:16 GMT",
            "x-hw": "1590592996.dop040.mi1.d"
          },
          "method": "HEAD",
          "reason": "Internal Server Error",
          "speed_download": 0,
          "status": 500,
          "time_appconnect": "0.000",
          "time_connect": "0.001",
          "time_namelookup": "0.001",
          "time_starttransfer": "0.001",
          "time_total": "0.001",
          "url": "<REDACTED>",
          "version": "1.1"
        }
      }
    ]
  }
}

Describe the solution you'd like
It would be preferred that the http_request utility returns failed = True on 4xx and 5xx status codes.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.