Cheers, I’ve since discovered that’s is “bouncers” that I want on the endpoints I.e on my Nginx Proxy Manager. I’ll just use the LAPI on the Opnsense box for now I think.
- 22 Posts
- 250 Comments
I thought crowdsec does everything fail2ban does in addition to global block lists?
Where did you have it setup? Is your proxy configured to forward the real IP?
Nah, that one conflicts with my IPoAC networks unfortunately :(
I did have that same thought actually, with opening up opnsense to be modified. But I also like the idea of it getting blocked before it even gets into my network, instead if letting it in initially and then blocking afterwards - that’s kinda the whole job of a firewall after all ha ha
Awesome that makes a lot of sense, cheers. So I’ll install the Crowdsec agent on the Nginx Proxy Manager, and potentially also on the servers.
Thanks those links were helpful to get me on the right path. I like that there is a plugin for Opnsense directly and has that central LAPI, because I’d need something similar if I was to use f2b.
Matty_rto Technology@lemmy.world•DRM-Free OnlyFans Downloads See Widevine Project Nuked From GitHubEnglish7·5 days agoCodeBerg is a public instance of Forgejo. You can run your own local instance of Forgejo.
At some point they’ll have federation working so you’ll be able to use your home instance of Forgejo to interact with other projects/instances.
Matty_rto Selfhosted@lemmy.world•I want to build a Mini ITX PC for my home server, where do I start?English8·6 days agoITX is fun to build, but really limits your options and expandability.
For an ITX build make sure you’ve got a CPU with integrated graphics, so you’re not wasting a slot for a GPU. You can also get an internal SATA/RAID card to expand the amount of drives you can have.
Matty_rto Selfhosted@lemmy.world•How do you handle absolutely critical alerts on your Android phone?English3·22 days agoI have some alerts like that using Pushover. You can set it to treat high priority alerts like an alarm which bypasses things like do not disturb and silence etc
Matty_rto Programmer Humor•js is in the "pure embodiment of hell" category along with vb.net and php3·22 days agoIt can be pretty frustrating when dealing with old code bases. However its introducing a lot of really great features, so if you’ve got the time to either start a new project or rewrite with the more modern features you’ll be fine.
Matty_rto Linux Gaming@lemmy.world•Does anyone here have a solution for KDE or Wayland crashing when VRAM runs out?English2·1 month agoMaybe, but it definitely helped keep it playable.
Matty_rto Linux Gaming@lemmy.world•Does anyone here have a solution for KDE or Wayland crashing when VRAM runs out?English4·1 month agoKinda, I have this issue with Diablo 4. It might with work other games that use dxvk, but you van try creating a config file in the same directory as the executable:
“dxvk.conf” with the following lines: dxgi.maxDeviceMemory=8192 dxgi.maxSharedMemory=8192
Worth a shot.
Matty_rto Technology@lemmy.world•Garmin adds AI and a subscription tier to its appEnglish7·1 month agoSo, I only just got into their eco system. The main selling point is it didn’t have subscriptions needed.
Where to from here? When they inevitability add required sub’s.
Matty_rto Linux Questions@lemmy.zip•Is there any reason to use Powershell on Linux?English3·1 month agoI got pretty late into the Linux world after having been a Windows admin for years. I got so used to powershell that I still can’t really put together a decent bash script without going over previous scripts or going online for help, but I can still smash out a powershell script easily.
Use what your most comfortable with, but you’ll need bash at some point if you manage Linux servers.
Matty_rto Jellyfin: The Free Software Media System@lemmy.ml•Join Finamp's first Hackathon Next Week!English2·1 month agoWhere ever you need me ha ha. I’m a Java dev, never touched Flutter nor Dart before, so we will see how productive I can be. Hopefully there are some good first issues that aren’t too in depth initially just to wrap my head around it all. Learning your code base is one thing, but learning Flutter + Dart is a whole other thing :S
With the bouncer setup, I assume I need to pass in where to look for logs or something for those to be passed into the lapi? I followed this CrowdSec and Nginx Proxy Manager , as far as I can tell everything is connected an running, I have crowdsec running on OpnSense via the plugin - it appears to be healthy as per the CrowdSec Console.
npm | [nginx ] nginx: [error] [lua] crowdsec.lua:62: init(): error loading captcha plugin: no recaptcha site key provided, can't use recaptcha npm | [nginx ] nginx: [error] [lua] ban.lua:37: new(): BAN_TEMPLATE_PATH and REDIRECT_LOCATION variable are empty, will return HTTP 403 for ban decisions npm | [nginx ] nginx: [alert] [lua] crowdsec_openresty.conf:5):11: [Crowdsec] Initialisation done npm | [supervisor ] starting service 'app'... npm | [app ] [5/5/2025] [11:26:30 PM] [Global ] › ℹ info Using Sqlite: /data/database.sqlite npm | [supervisor ] all services started.