CyberMind-FR
04908fc414
CrowdSec: - Change LAPI default port from 8080 to 8180 (avoid Docker conflict) - Update bouncer config, init script, and RPCD dashboard - Fix port detection hex value (1FF4 for 8180) Streamlit: - Complete rewrite with folder-based app structure - Multi-instance support (multiple apps on different ports) - Gitea integration (clone, pull, setup commands) - Auto-install requirements.txt with hash-based caching HexoJS: - Multi-instance support with folder structure - Multiple blog instances on different ports HAProxy: - Auto-generate fallback backends (luci, apps, default_luci) - Add --server letsencrypt to ACME commands Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
29 lines
776 B
Plaintext
29 lines
776 B
Plaintext
# CrowdSec Firewall Bouncer Configuration
|
|
# SecuBox OpenWrt Edition
|
|
#
|
|
# This bouncer fetches decisions from CrowdSec LAPI and enforces them
|
|
# using nftables with automatic expiration via timeout sets.
|
|
|
|
config bouncer
|
|
option enabled '0'
|
|
option ipv4 '1'
|
|
option ipv6 '1'
|
|
option api_url 'http://127.0.0.1:8180/'
|
|
option api_key ''
|
|
option update_frequency '10s'
|
|
option priority '4'
|
|
option deny_action 'drop'
|
|
option deny_log '1'
|
|
option log_prefix 'CrowdSec: '
|
|
option log_level 'info'
|
|
option log_max_size '100'
|
|
option log_max_backups '3'
|
|
option log_max_age '30'
|
|
option filter_input '1'
|
|
option filter_forward '1'
|
|
option chain_name 'crowdsec-chain'
|
|
option chain6_name 'crowdsec6-chain'
|
|
option retry_initial_connect '1'
|
|
list interface 'br-lan'
|
|
list interface 'eth1'
|