crowdsec-cloudflare-bouncer

crowdsec-cloudflare-bouncer

Docker app from mrslaw's Repository

Overview

A bouncer that syncs the decisions made by CrowdSec with CloudFlare's firewall. Manages multi user, multi account, multi zone setup. Supports IP, Country and AS scoped decisions.

CrowdSec

💠 Hub 💬 Discourse

CrowdSec Cloudflare Bouncer

A bouncer for Cloudflare.

How does it work

A bouncer that syncs the decisions made by CrowdSec with CloudFlare's firewall. Manages multi user, multi account, multi zone setup. Supports IP, Country and AS scoped decisions.

Documentation

Please follow the official documentation.

Install crowdsec-cloudflare-bouncer on Unraid in a few clicks.

Find crowdsec-cloudflare-bouncer in Community Apps on your Unraid server, review the template, and click Install. Unraid handles the Docker app or plugin setup from the published template.

Open the Apps tab on your Unraid server Search Community Apps for crowdsec-cloudflare-bouncer Review the template variables and paths Click Install

Requirements

Create API token and set permisions

https://dash.cloudflare.com/profile/api-tokens
https://raw.githubusercontent.com/crowdsecurity/cs-cloudflare-bouncer/main/docs/assets/token_permissions.png

Obtain `crowdsec_lapi_key` from crowdsec terminal
`cscli -oraw bouncers add cloudflarebouncer`

Create `/crowdsec/bouncers` directory if it doesn't exist
`sudo mkdir /mnt/user/appdata/crowdsec/bouncers`

Create CF bouncer config using token(s), ex. `CLOUDFLARE_API_TOKEN1,CLOUDFLARE_API_TOKEN2`
`docker run --rm crowdsecurity/cloudflare-bouncer -g CLOUDFLARE_API_TOKEN /mnt/user/appdata/crowdsec/bouncers/crowdsec-cloudflare-bouncer.yaml`

Review config and set `crowdsec_lapi_key` , `crowdsec_lapi_url` must be reachable by the container
`sudo nano /mnt/user/appdata/crowdsec/bouncers/crowdsec-cloudflare-bouncer.yaml`

Start the container

Categories

Download Statistics

434,224
Total Downloads
25,951
This Month
16,209
Avg / Month

Total Downloads Over Time

Loading chart...

Related apps

Explore more like this

Explore all

Details

Repository
crowdsecurity/cloudflare-bouncer:latest
Last Updated2024-09-16
First Seen2022-08-22

Runtime arguments

Web UI
http://[IP]:[PORT:2112]/metrics
Network
bridge
Shell
sh
Privileged
false

Template configuration

AppdataPathrw
Target
/etc/crowdsec
Default
/mnt/user/appdata/crowdsec/
PortPorttcp
Target
2112
Default
2112
Value
2112
PUIDVariable
Default
99
Value
99
UMASKVariable
Default
022
Value
022
PGIDVariable
Default
100
Value
100