In addition to the explanation you got from the other user: once you’ve set up the bouncer middleware in the configs (don’t know if there even exists a good way to do that outside of the configs files), you simply assign the middleware in the compose file as usual.
Comment on CrowdSec vs Fail2Ban - What to use?
Lem453@lemmy.ca 1 week agoI have traefik running with all config done via the docker compose files and I just couldn’t figure out how to get the bouncer middleware to work without causing problems. Doesn’t help that most examples seem to be based on the static yaml based config so I’m trying to convert jt. Would appreciate anyone who might know of a resource that explains with docker compose environment tags.
I also have middle ware for things like authentik which complicates things.
JASN_DE@feddit.org 1 week ago
mbirth@lemmy.ml 1 week ago
In the Traefik static configuration (usually
traefik.yml), add this to load the CrowdSec plugin:(The name for the plugin is defined here as
crowdsec-bouncer-traefik-plugin.)Then, in your dynamic configuration, add this (I’ve used a separate file
dynamic_conf/050-plugin-crowdsec-bouncer.yml):(The name for this new middleware defined here is
crowdsec-bouncer. It uses thecrowdsec-bouncer-traefik-plugindefined in the previous step. Make sure these names match.)You can get the LAPI key by registering a new bouncer in CrowdSec.
And, finally, make sure all incoming traffic routes through the bouncer plugin. You can do this individually, or in general via the static config:
The middlewares are processed top to bottom.