CrowdSec
From Indie IT Wiki
Revision as of 10:55, 11 October 2024 by Plittlefield (talk | contribs)
Introduction
CrowdSec is a platform that collects and curates data on aggressive IPs from real users and servers in real production environments. It provides actionable blocklists to reduce security alerts, server load, and incident response costs.
It can be integrated with all the popular proxy software solutions such as Nginx Proxy Manager and Traefik to automatically defend against all known cyber attacks.
Installation
Docker
Setup CrowdSec with Nginx Proxy Manager - YouTube
Setup CrowdSec with Traefik - YouTube
Traefik Bouncer - CrowdSec Hub
Usage
docker exec crowdsec cscli metrics docker exec crowdsec cscli bouncer list docker exec crowdsec cscli decisions list docker exec crowdsec cscli decisions add --ip 123.456.789.0 --duration 2m docker exec crowdsec cscli decisions delete --ip 123.456.789.0
Notifications
https://docs.crowdsec.net/docs/notification_plugins/email/