History

CyberMind-FR ba64563b3f feat: Firewall Bouncer Management UI in Bouncers Page Enhanced CrowdSec Dashboard bouncers page with comprehensive firewall bouncer management capabilities. New Features: - Dedicated Firewall Bouncer management card with 3 status panels: * Service Status: Running/stopped, boot start enabled/disabled, configured status * Blocked IPs: Real-time IPv4/IPv6 blocked IP counts with View Details modal * nftables Status: IPv4/IPv6 table active status - Service Control Buttons: * Start/Stop service (contextual based on current state) * Restart service * Enable/Disable boot start (contextual) * Configuration viewer - Real-time Updates: * Auto-refresh every 10 seconds via polling * Manual refresh button * Live status badge updates - nftables Details Modal: * Lists all blocked IPv4 addresses (scrollable) * Lists all blocked IPv6 addresses (scrollable) * Shows IPv4/IPv6 rules count * Formatted with monospace font - Configuration Viewer Modal: * Displays all UCI configuration settings * Shows enabled/disabled status * Shows IPv4/IPv6 support * Shows API URL, update frequency, deny action * Shows deny logging and log prefix * Shows configured network interfaces * Handles unconfigured state with installation prompt UI Enhancements: - Responsive grid layout for status cards - Color-coded status indicators (green=active, red=stopped, gray=disabled, yellow=warning) - Material design badges for all status indicators - Visual feedback for all operations with notifications - Loading spinners for async operations - Professional styling consistent with SecuBox theme Integration: - Utilizes new API methods: getFirewallBouncerStatus, controlFirewallBouncer, getFirewallBouncerConfig, getNftablesStats - Error handling with user-friendly notifications - Proper promise chaining and async/await patterns Technical Details: - Added renderFirewallBouncerCard() method (125 lines) - Added handleFirewallBouncerControl() method for service actions - Added handleFirewallBouncerRefresh() for manual/auto refresh - Added showNftablesDetails() modal for blocked IPs - Added showFirewallBouncerConfig() modal for UCI settings - Enhanced load() to fetch firewall bouncer data - Updated polling to refresh firewall bouncer status 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>		2026-01-06 20:25:15 +01:00
..
.github/workflows	feat(structure): reorganize luci-app packages into package/secubox/ + appstore migration	2026-01-01 14:59:38 +01:00
htdocs/luci-static/resources	feat: Firewall Bouncer Management UI in Bouncers Page	2026-01-06 20:25:15 +01:00
po/templates	feat(structure): reorganize luci-app packages into package/secubox/ + appstore migration	2026-01-01 14:59:38 +01:00
root/usr	feat: Add Firewall Bouncer management API to CrowdSec dashboard	2026-01-06 20:19:11 +01:00
.gitignore	feat(structure): reorganize luci-app packages into package/secubox/ + appstore migration	2026-01-01 14:59:38 +01:00
LICENSE	feat(structure): reorganize luci-app packages into package/secubox/ + appstore migration	2026-01-01 14:59:38 +01:00
Makefile	fix: remove circular dependency in luci-app-crowdsec-dashboard	2026-01-04 08:35:11 +01:00
README.md	feat(structure): reorganize luci-app packages into package/secubox/ + appstore migration	2026-01-01 14:59:38 +01:00

README.md

🛡️ LuCI CrowdSec Dashboard

Version: 0.4.0
Last Updated: 2025-12-28
Status: Active

A modern, responsive, and dynamic dashboard for monitoring CrowdSec security on OpenWrt routers.

✨ Features

Real-time Overview - Monitor active bans, alerts, and bouncer status at a glance
Decision Management - View, search, filter, and manage IP bans directly from the interface
Alert History - Browse and analyze security alerts with detailed event information
Metrics Dashboard - Comprehensive view of CrowdSec engine metrics, parsers, and scenarios
Responsive Design - Works perfectly on desktop, tablet, and mobile devices
Auto-refresh - Data updates automatically every 30-60 seconds
Dark Theme - Industrial cybersecurity aesthetic optimized for low-light environments

📦 Installation

From OpenWrt Package Repository (Recommended)

opkg update
opkg install luci-app-crowdsec-dashboard

Manual Installation

Download the latest release from the Releases page
Transfer to your OpenWrt device:

scp luci-app-crowdsec-dashboard_*.ipk root@router:/tmp/

Install the package:

opkg install /tmp/luci-app-crowdsec-dashboard_*.ipk

Restart uhttpd:

/etc/init.d/uhttpd restart
/etc/init.d/rpcd restart

Building from Source

Clone into your OpenWrt build environment:

cd ~/openwrt/feeds/luci/applications/
git clone https://github.com/YOUR_USERNAME/luci-app-crowdsec-dashboard.git

Update feeds and select the package:

cd ~/openwrt
./scripts/feeds update -a
./scripts/feeds install -a
make menuconfig
# Navigate to LuCI → Applications → luci-app-crowdsec-dashboard

Build:

make package/luci-app-crowdsec-dashboard/compile V=s

🔧 Requirements

OpenWrt 21.02 or later
CrowdSec Security Engine installed and running
CrowdSec Firewall Bouncer (recommended)
LuCI web interface

Recommended CrowdSec packages:

opkg install crowdsec crowdsec-firewall-bouncer

📱 Screenshots

Overview Dashboard

Real-time stats, top scenarios, and countries visualization.

Decisions Manager

Full-featured table with search, sort, bulk actions, and manual ban capability.

Alert History

Chronological view of all security events with filtering options.

Metrics View

Detailed engine metrics, bouncer status, and hub components.

🏗️ Architecture

luci-app-crowdsec-dashboard/
├── Makefile                          # OpenWrt build instructions
├── htdocs/
│   └── luci-static/resources/
│       ├── crowdsec-dashboard/
│       │   ├── api.js               # RPC API module
│       │   └── dashboard.css        # Cybersecurity theme styles
│       └── view/crowdsec-dashboard/
│           ├── overview.js          # Main dashboard view
│           ├── decisions.js         # Decisions management
│           ├── alerts.js            # Alerts history
│           └── metrics.js           # Metrics display
├── root/
│   ├── usr/libexec/rpcd/
│   │   └── crowdsec                 # RPCD backend (shell script)
│   └── usr/share/
│       ├── luci/menu.d/             # Menu configuration
│       └── rpcd/acl.d/              # ACL permissions
└── po/                              # Translations

🔌 API Endpoints

The dashboard uses ubus RPC calls through the crowdsec RPCD module:

Method	Description
`decisions`	Get all active decisions
`alerts`	Get alert history with limit
`metrics`	Get Prometheus metrics
`bouncers`	List registered bouncers
`machines`	List registered machines
`hub`	Get hub status (collections, parsers, scenarios)
`status`	Get service status
`stats`	Get aggregated dashboard statistics
`ban`	Add manual IP ban
`unban`	Remove IP ban

🎨 Customization

Changing the Theme

Edit /htdocs/luci-static/resources/crowdsec-dashboard/dashboard.css:

:root {
    --cs-bg-primary: #0a0e14;
    --cs-accent-green: #00d4aa;
    /* ... modify colors as needed */
}

Adding New Metrics

Add RPC method in /root/usr/libexec/rpcd/crowdsec
Declare RPC call in /htdocs/luci-static/resources/crowdsec-dashboard/api.js
Create UI component in the appropriate view file

🤝 Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

Fork the repository
Create your feature branch (git checkout -b feature/AmazingFeature)
Commit your changes (git commit -m 'Add some AmazingFeature')
Push to the branch (git push origin feature/AmazingFeature)
Open a Pull Request

📄 License

This project is licensed under the Apache License 2.0 - see the LICENSE file for details.

🙏 Acknowledgments

CrowdSec - The open-source security engine
OpenWrt - The freedom to make your network your own
LuCI - OpenWrt Configuration Interface

📬 Contact

Gandalf - CyberMind.fr

Website: https://cybermind.fr
GitHub: @YOUR_USERNAME

Made with ❤️ for the OpenWrt and CrowdSec communities