NGinx bouncer / appsec / no remediation
Hi,
If I have a website behind Cloudflare and I'm using the crowdsec-cloudflare-worker bouncer,
do I still need to use the NGINX bouncer?
My main goal is to benefit from CrowdSec's application-level threat detection (appsec),
but only apply remediation through the Cloudflare bouncer.
Is it possible to use appsec to detect threats locally, while enforcing bans only on Cloudflare,
in order to avoid issues like cache poisoning?
Thanks!
4 Replies
Important Information
This post has been marked as resolved. If this is a mistake please press the red button below or type
/unresolve© Created By WhyAydan for CrowdSec ❤️
If you want to use the appsec, yes you have to keep using the nginx bouncer.
At the moment, it's not possible to only run the appsec without the boucing part, but it's probably not a big issue in your case: as cloudflare is in front, it will apply the decisions 1st and nginx will not see the requests
ok, I will stay on that for the moment and see how it work in the long run, thx for your reply.
Resolving NGinx bouncer / appsec / no remediation
This has now been resolved. If you think this is a mistake please run
/unresolve