All apps · 0 apps
crowdsec-cloudflare-bouncer
Docker app from mrslaw's Repository
Overview
A bouncer that syncs the decisions made by CrowdSec with CloudFlare's firewall. Manages multi user, multi account, multi zone setup. Supports IP, Country and AS scoped decisions.
Readme
View on GitHub
CrowdSec Cloudflare Bouncer
A bouncer for Cloudflare.
How does it work
A bouncer that syncs the decisions made by CrowdSec with CloudFlare's firewall. Manages multi user, multi account, multi zone setup. Supports IP, Country and AS scoped decisions.
Documentation
Please follow the official documentation.
Install crowdsec-cloudflare-bouncer on Unraid in a few clicks.
Find crowdsec-cloudflare-bouncer in Community Apps on your Unraid server, review the template, and click Install. Unraid handles the Docker app or plugin setup from the published template.
Open the Apps tab on your Unraid server Search Community Apps for crowdsec-cloudflare-bouncer Review the template variables and paths Click Install
Requirements
Create API token and set permisions
https://dash.cloudflare.com/profile/api-tokens
https://raw.githubusercontent.com/crowdsecurity/cs-cloudflare-bouncer/main/docs/assets/token_permissions.png
Obtain `crowdsec_lapi_key` from crowdsec terminal
`cscli -oraw bouncers add cloudflarebouncer`
Create `/crowdsec/bouncers` directory if it doesn't exist
`sudo mkdir /mnt/user/appdata/crowdsec/bouncers`
Create CF bouncer config using token(s), ex. `CLOUDFLARE_API_TOKEN1,CLOUDFLARE_API_TOKEN2`
`docker run --rm crowdsecurity/cloudflare-bouncer -g CLOUDFLARE_API_TOKEN /mnt/user/appdata/crowdsec/bouncers/crowdsec-cloudflare-bouncer.yaml`
Review config and set `crowdsec_lapi_key` , `crowdsec_lapi_url` must be reachable by the container
`sudo nano /mnt/user/appdata/crowdsec/bouncers/crowdsec-cloudflare-bouncer.yaml`
Start the container
https://dash.cloudflare.com/profile/api-tokens
https://raw.githubusercontent.com/crowdsecurity/cs-cloudflare-bouncer/main/docs/assets/token_permissions.png
Obtain `crowdsec_lapi_key` from crowdsec terminal
`cscli -oraw bouncers add cloudflarebouncer`
Create `/crowdsec/bouncers` directory if it doesn't exist
`sudo mkdir /mnt/user/appdata/crowdsec/bouncers`
Create CF bouncer config using token(s), ex. `CLOUDFLARE_API_TOKEN1,CLOUDFLARE_API_TOKEN2`
`docker run --rm crowdsecurity/cloudflare-bouncer -g CLOUDFLARE_API_TOKEN /mnt/user/appdata/crowdsec/bouncers/crowdsec-cloudflare-bouncer.yaml`
Review config and set `crowdsec_lapi_key` , `crowdsec_lapi_url` must be reachable by the container
`sudo nano /mnt/user/appdata/crowdsec/bouncers/crowdsec-cloudflare-bouncer.yaml`
Start the container
Categories
Download Statistics
434,224
Total Downloads
25,951
This Month
16,209
Avg / Month
Total Downloads Over Time
Loading chart...
Related apps
Explore more like this
Explore allLinks
Details
Repository
crowdsecurity/cloudflare-bouncer:latestLast Updated2024-09-16
First Seen2022-08-22
Runtime arguments
- Web UI
http://[IP]:[PORT:2112]/metrics- Network
bridge- Shell
sh- Privileged
- false
Template configuration
AppdataPathrw
- Target
- /etc/crowdsec
- Default
- /mnt/user/appdata/crowdsec/
PortPorttcp
- Target
- 2112
- Default
- 2112
- Value
- 2112
PUIDVariable
- Default
- 99
- Value
- 99
UMASKVariable
- Default
- 022
- Value
- 022
PGIDVariable
- Default
- 100
- Value
- 100