Release Notes 2025

Journeys API: Fixed error if no kappa and error on KB result

Journeys UI: Fixed multiple UI components (missing feedback bar, missing heights for alerting and syn results, scroll function on alerting admin table, NMS alertMan application filter updates, hidden results in DE table visualization type, auto-closing panel, renaming a journey, filters not displaying in ME, etc.)

Journeys: Updated delete and restore actions for Kentik AI

Journeys: Updated AWS Zone ID few-shot examples to match dimension changes

Journeys: Cache dimension enum query result

Fixed clone policy for regular threshold and copied from template flows

Fixed MKP policies and tenant configuration

Fixed group by primary dimension for NMS native alerts

Fixed IPv6 wrap in alert table

Fixed adding comments for alert on DDoS landing page

Fixed broken Alerting backfill dimensions and covered with UTs

Fixed alerting API test

Fixed broken insight and NMS charts

Updated alert triggered event details for more accuracy

Updated notification channel association list

Used policy metric order to identify baseline metric

Used proper query property for KDE aggregate minutes

Added extensions to core fields and filter components

Added device site name to notifications EVM

Added the capability for users to save a baseline-only condition policy without having to specify a static threshold condition metric value

Added a refresh results button to the table to show last fetched time in tooltip

Removed extra right padding on the nav and subnav

Removed Last 24 Hour Top Dest IPs from DDOS landing page

Removed “Total” dimension when constructing alert DE queries

Removed unsupported flowspec fields

Improved Alert CSV export native NMS

Streamlined alert table filtering for exact alert ID search

Validated device type selection against device availability when creating policies

Showed time in either local or UTC format on the Alert debug chart

Honored user timezone setting for suppression details and simplified start time validation

Scope required condition rules only to NMS policy types

Supported kevent policies and alerts

Showed “Clear Alert” as an action in the alert table kebab

Handled kevent null threshold filters

Accounted for escalations in alert charts and explanations

Used DE-required dimensions as Syslog and SNMP Trap policy defaults

Serialized missing threshold filters as null

Stripped commas from numeric policy filter values for standard alerting policies

Handled null case for Top Keys alert chart threshold condition value

Improved mitigations table and drawer, and filter alerts

Renamed mitigation model and collection

Supported navigating to mitigation by ID in URL

Optimized single alert fetch

Fixed the AWS API Status Cloud Config section timing out

Fixed reporting API Status results when scraping AWS topology

Updated OCI DRG connection queries/filters

Updated AWS map performance and map account selector

Added support for security group rule with security group references in AWS connectivity checker

Added extra null check when drg route table is not found and showed CalloutOutline error when route table not found in topology

Added more logging to aid in debugging future AWS and OCI metadata fetch and API result caching

Added Riyadh region for the OCI dropdown

Added ‘Use OCI Timestamp (beta)’ toggle for OCI datasource in DE

Optimized OCI scraper to prevent duplicate scrapes and created custom Kentik client configuration to prevent too many delays

Disabled on-demand OCI API calls for config status

Allowed for creation of cloud export that will not fetch metadata for AWS, GCP, and OCI, and fixed outdated KB links

Removed processing route to service tags for Azure

Fixed subdomain URL parsing tenant for SSO login

Fixed company trial expiration date display

Fixed corner case where SSO lookup button is disabled

Fixed possible redirect bug during 2FA

Fixed login password functionality

Fixed ASN details view error

Fixed alignment of fields without helper text

Fixed broken Virtual Column Filter for Prefix+LEN

Fixed right filter fields that are subtype or appproto

Fixed showing Account Team Card on license page

Fixed unique device fetch with all datasource option selected

Fixed error when ASN information doesn’t exist

Fixed accessibility for login

Fixed the Add New Saved View

Updated SSO lookups to be taken directly from email address rather than TLD

Updated UX for all login pages

Updated style for Yubikey verification

Updated KB links in the portal

Added manual run option for report subscription

Added pending tab to OTT

Added a new API endpoint to fetch device by IP and/or Site

Prevented possibilities of bad redirects during login

Prevented the verify DNS dialog from erroring on focus

Prevented interface table from showing duplicate results

Prevented crash with invalid view ID

Prevented device labels from being removed by bulk labels edit

Improved log message by using a consistent unit (milliseconds) and displaying the unit

Correctly applied default permissions to company details

Truncated dimensions separately in tooltips

Made minimal tags consistent across the platform

Linked sentry issue to error report

Made OTT bar label readable

Included all relevant fields in update device response

Adjusted device column widths due to new tags

Used new OTT-classification column

Only showed “Add Cost Group’ button after provider has been saved

Reworked login background animation for improved CPU-only performance

Moved Credential Vault API to restricted internal service

Released Traffic Costs

Fixed the charts that are rendered with NMS alerts that occur when the polling cycle is less than the default

Fixed filters for custom up/down charts

Fixed loading of saved views

Made default condition group connector ‘all’ instead of ‘any’ for Add NMS Alert Policy

Restricted dimension filter operators based on type of selected dimension

Prevented error when device availability fails

Ensured device list and detail views show same CPU utilization

Ensured device details CPU sparkline is identical to list page and list drawer

Allowed cloud dimensions with spaces

Expanded SNMPv3 auth options

Fixed Synth subtest chart hover and avg metrics to fetch results only for a given agent/target pairing (if available)

Fixed Incident Log widget configure panel to not show by default

Fixed Alarm Table DNS Test links

Fixed mesh toolbar (ensured checkboxes in the metric selector are selectable, displayed down caret icon in agent selectors, started agent numbering at 1, ensured consistent ordering of metrics display)

Fixed the dot colors for high/max density aggregate mesh

Fixed Synth IPv6 agent support validator

Fixed Synth Agent IP search

Fixed selected timestamp synth test export

Fixed alarm timeline selected state

Fixed Synth test public shared defined in a date range calculated by look-back seconds

Updated performance to trace query and allowed filtering traces by target

Removed agent IP mapping

Fixed Synth Trace Hop Count by enabling filtering the trace data by agent ID and target ID

Addressed Synth path panel feedback and showed a tooltip indicating selection restrictions and hint for filtering by selected items

Included paused tests in agent details response

Unlinked edit link text from add test

DE NLQ: Fixed IP range filtering

DE NLQ: Updated filtering on inexact device name

DE NLQ: Added flow tags to filtering

Journeys: Added more instructions for Journeys to only respond to relevant parts of a question / user queries with multiple questions

Journeys: Updated v6 API

Journeys: Updated UX and UI, and added live synth NLQ

Fixed an issue to now show kevent records in the alerting table

Fixed the Policies page performance for customers with high device counts

Fixed a typo in the Start Manual Mitigation dialog error message

Fixed up/down chart safety boundaries when constructing query

Fixed bulk add notification channel button for NMS policies

Syslog: Extended core notification translator to support kevent alerts

Syslog: Implemented a translator function for turning NMS-shaped form values into event-shaped policy values

Syslog: Charts and filter transforms for kevent alerts

Syslog: Fixed issues with existing Query-to-Policy (Q2P), and extended methods to prepare for syslog Q2P

Updated to show full alert count for the past 7 days, and showed a link to view alerts in the table

Centralized managing company policy application requests and permissions

Removed 1px border from the drawer drop shadow

Handled clear override for kmetrics policies

Fixed AWS Cloud Map Transit Gateway Route Table sidewar widget to include an accurate number of route tables in the summary, group-by table ID, and display table name in the group header. Table ID and name will show as a group header with an empty row containing text “No Routes Found”.

Fixed bug in Azure entity explorer and fixed link from performance monitor to cloud export config wizard

Fixed direct connect gateways bug in AWS metadata fetch

Added AWS Firewalls and Firewall Policies into topology

Added AWS account summary generation, added menu in the search map section, and updated topology refresh to load only the selected account

Metadata boxes do not allow unchecking for non-Azure cloud exports

Improved AWS account selector

Updated cloud AWS and OCI map

Changed references to connectivity checker to be Cloud Pathfinder

Deprecated TSDB

Fixed Query URL

Fixed error thrown during device details overview export

Fixed the “none” option for network boundary

Fixed nested query saved filter

Fixed phrasing on column selector

Fixed sudo lookup

Fixed Regression from APIv5 migration

Fixed device details redirect

Updated Devices Export CSV to include NMS attributes

Updated system user provisioning, and added kagent and AI users

Updated running queries to ignore invalid saved filters

Updated KB links in Device Settings dialog

Updated APIv5 translation service

Added charts for syslog and traps capabilities

Added Copy to the Clipboard button for Audit Log payloads

Added OTT Classification Type column

Added V3 redirects and fixed company delete

Cached hash results for KentikAgentLink to prevent unnecessary fetches

Applied CPU, memory, temperature, and traffic data values for NMS metrics

Verified interface sidebar numbers match the table

Eliminated partial 2FA bypass method

Made new APIv6 routes available to API tester

Ensured Add Device buttons work on all device list tabs

Set the default filter value for ‘Show Archived Devices” to true

Allowed query editor even when there’s no flow

Showed Devices correct ST status on load

Corrected typos on Configure New Provider page

Removed Return to V3 links

Prevented what field from being overwritten when undefined in the update settings payload

Corrected the display status for ICMP-only devices

Updated the config and data modeling structure for the current NMS policy form

Fixed wizard arrow navigation between sections

Fixed NMS policy form validation

Added Kentik Agent as a target type for NMS alerts

Added NMS sudo options for filtering alerts/policies

Formatted metrics in the policy drawer

Updated the NMS policy form to only show entity types that the UI knows how to support

Updated policy table dimensions for custom target NMS policies

Fixed the refresh of metrics dashboards

Corrected policy state display

Adjusted layout of NMS policy conditions display

Used average instead of last to sort device details interfaces queries

Added support for nested condition groups in NMS policy form

Added help text to NMS policy form

Fixed type errors in MetricsResult

Returned kmetrics device properties with device detail requests

Fixed alerting pages

Fixed manual clear toggle for NMS policies

Ensured all series are within y-axis bounds of device details charts

Added active state styling to condition groups when clicked

Used consistent NMS dimension display logic across components

Updated the default Universal Agent Problem policy to an NMS-native policy

Limited kagent docker logging on general principles

Fixed active condition group select action for portal drop-downs

Synth Alarm first trigger updates include display and functionality of test results like the incident log and timeline by adding new features, renaming existing ones, and addressing how data is shown and linked

Fixed various issues related to alarms timeline accuracy, particularly in subtest results

Fixed Synth Agent activation with Alerting

Fixed waterfall view height to expand with parent’s flex

Journeys NMS: Allowed grouped NLQ filters, port metric filters to standard UI, and various re-factors

Journeys: Added AWS CCC subnet name and instance name lookup

Journeys: Added Syn Test results and fixed alert prompt delete

Journeys: Added ability to undo delete

Journeys: Added missing function export

DE NLQ: Added unique & total metrics

DE NLQ: Updated filtering on IPs individually in a range

Added new event application type for kevent type policies

Added "is greater than" option to policy condition operators

Mapped kevent alerts to the Core notification translator

Removed ‘require’ marker from the Custom Webhook OAuth fields

Deprecated the Alert Policy Minimum Traffic Field

Changed Flowspec rate limit label back to bytes and added a tooltip warning users that their device may interpret this value as bits

Forced refetching notifications when loading tenants

Fixed the condition error that appears on policies with Top Key conditions

Fixed the short-circuit infinite load when using local search

Fixed MKP Alerting fetching and filtering functionality

Fixed tests and serialization for policy silent mode

Fixed a display bug where dimensions overlapped with controls, and added an ellipsis if the dimension is too long

Updated the frequency of fetching AWS metadata for Principal to every hour

Updated documentation link in Empty Traffic Overview

Updated UI to add AWS Availability Zone ID and AZ name

Updated query times to have a 5-minute floor

Added an ENI cloud icon and display in the connectivity checker report

Added a confirmation modal before deleting a cloud export

Dashboards that use all data sources for queries no longer require cloud exports

Refactored AWS scrape and API call reporting

Established null filters for TransitGateway and TransitGateway Attachment

Refreshed access token when previous one expires

Enlarged Data Explorer filter options modal viewport

Azure: Removed NSG logs and added VNet logs support

Fixed UI bugs in the Azure cloud export edit experience

Saved and planned filter APIv6

Devices List Page - Agents - Combined lookups, showed filter on initial load, and allowed grouping

Devices List Page - URL parameter for tab

Prevented the Devices page from showing no devices by default

Prevented no columns if linked directly to Devices custom view mode

Switched to library for extracting SSO domain

Modified the 'Show Archived Devices' filter so it does not hide non-archived devices

Unified Devices List: Stored last view mode to user and filter sidebar group open states to hash

Updated NMS status details in telemetry

Allowed monitoring template updates even if the device has multiple SNMP collection methods

Established the correct KMR for auto provision user via SSO login

Updated sentry.io DSN fetch request

Removed the leave empty IDP certificate description

Significant updates to Syslog collect functionality, alerts, constraints, and UI display (new page for NSM Logs and new widget for observation deck)

Updated device landing page and details page

Core: Added metrics suppression on top of existing dimension and filter suppression

Increased the default limit of the metric device collection

Showed correct actions column in devices custom columns

Used the same unknown icon in the devices listing page as the details page when relevant

Loaded the kproxyAgents collection when visiting the Telemetry tab

Reverted sentry for appwrapper router

Added Bulk Classify and PDB IX Assignment to Interfaces

Added a bitrate/utilization switch for interface charts

Added site market column/grouping to Unified Devices

Added node-side validations for last super admin modifications

Added space between lower sublayer interfaces

Added sentry.io integration to react router paths and error capture

Added manage menu to the unified devices page and added ellipsis to the credentials column

Added id and cdate to the device details page

Added NMS device parameters to list devices call

Added NMS device parameters to the main device call

Added ability to bulk update device monitoring templates

Added kproxy 7.50

Added custom dimensions API to v6

Fixed the logic for recently added parameter for /api/internal/customdimensions

Fixed filters between interfaces and connection on device details

Fixed the locked up devices page due to agent lookup

Fixed the interface filter sidebar for handling nulls

Fixed loading of metrics device on the details page

Fixed device filter and made other improvements on the interfaces table

Fixed entity name in tab selector

Fixed PDF exporting certain device pages

Fixed fetching query parameter

Fixed incorrect filtered devices link that led to incorrect filter hashes

Fixed the “Auto-Greek prefixing for Traffic-In/Traffic-Out columns in the interface page” in work log

Fixed chart colors profile settings

Traffic Costs links now only show where it is applicable

Fixed label suggestions to automatically populate for RBAC-restricted users creating new devices

Added Nokia SAP Dimensions

V5 Custom Dimension Translator

Enabled NMS SNMP Walks by default

Alert Manager rule for the NMS policy is now always enabled

Fixed overlapping text in the BGP search bar with peer AS filter

Fixed error on NMS query widgets with sparklines

Updated enterprise/model data for NMS discovery

Switched the default policy type selection from NMS to Threshold

Added monitoring template type to audit log

Adjusted threshold condition value label in NMS policy form

Autofilled target and condition measurements in NMS policy form

Linked to active NMS policy alerts from policy form and drawer

Fixed NMS policy validation

Updated agent throughput

• Updated Agent-to-Agent test creation and Agent install modal TCP (allowed to be 0)

Added protection against empty subtest trend results to eliminate fatal errors

Added a switch to the alerting section of test config wizard that allows defining targeted notification conjunctions based on test rule ID and critical severity

Sorted mesh rows and columns by alphabetical order instead of by agent ID

Fixed Path View latency threshold logic to ensure a consistent value is used when determining latency threshold violations

Fixed alarm timeline show health button

Fixed Path View success rate and link popover metrics

Journeys: Added query and NMS results to context

Journeys, new models: gpt-4o-11-20, Gemini 2.0 Flash, Codestral, Mistral Large

Updated Journeys UI

NMS NLQ: Ensured that if a filter is used, that metric is also included in the main query

Recon 1535/BGP display in alert table

Performance improvements for alert detail requests

Fixed "invalid date" on policy suppression date picker

Fixed silent mode date serialization

Fixed Alerting Overview loading bug

Fixed metrics up/down charts for NMS component entity alerts

Fixed BGP alert dimension labels

Fixed alerting table infinite scroll

AWS configuration status reporting missing API calls

AWS: Added new version and API support for cloud export API to allow/block list updates

Removed “beta” from connectivity checker page and menu, and added other copy changes

Improved AWS Metrics Sidebar Link

Fixed cloud export wiz unsampled bug

Fixed bug in Availability Zone metadata fetch

Applied device RBAC to subscriptions

Increased device name max length to 256

Enhanced highcharts tooltips

PR Label Validation

Required IDP Certification and added Pendo Account information

Added EdgeNext and Netskrt CDNs

Added Contains and Regex to Cloud Service Filter

Added kproxy 7.49 commit hash

Added SSO URL back to the login page

Added node-jobs service to regular deployment workflow

Removed install button for agents not yet authorized

Removed V5 API Tester Link

API schemas auto-generate typescript definitions

Updated certification location from docker volume mount

Trimmed IDP certification to pass validation

Various Traffic Costs improvements and fixes

Prevented create site error during onboard when missing address

Core, AI: Kentik Cause Analysis Beta

Initial pass at storage referrer on SSO login

Exports: Allowed png report, fix NMS report

DE: Made device name filter case insensitive

Global Search: Pressing ENTER now goes to the correct search result

Traffic Costs: handled record missing better

Prevented rows in cost csv with unknown sites from being excluded

Fixed empty UDR columns, DNS traffic nav link, and various tooltip issues

Fixed slow rendering of saved filters edit dialog

Audit Log: Fixed user column for generic events

Fixed clearPlotBandsAndZones highcharts issue

Fixed Sample Rate in device sidebar

Fixed saved filter showing loading spinner

Fixed PDF exports

Fixed node-job-update-traffic-cost-history

Fixed Connectivity Costs logic when ensuring each timestamp slice is accounted for

Made NMS Alerting on the default for all non-on-prems

Preserved notifications when enabling/disabling NMS policies

Fixed association of warning/severe notifications with NMS policies

Fixed charts and ME for BGP entity NMS alerts

Fixed NMS notifications for warning and severe levels

Aligned test type names between the “Add Test” page and the TCC filters

Global agent:target pair no longer displays traffic charts

Updated Synth threshold validation

Improved Synth scheduled tests

Updated http latency in test results to not display zero (0)

Allowed local domains in Synth URL Fields

Ensured Synth plan is active when fetching Synth plan

Ensured reciprocal agent-to-agent credits calculation

Shortened timeframe for clicking from the incident log or notification details

Fixed Synth Library Health

Fixed grace period/test frequency validation for preview tests

Fixed Synth Library Health

Fixed Synth Path View agent filter