Caddy Crowdsec no metrics

Hey, I have setup caddy with my lapi server

But I get no metrics on my local caddy server.
Is there any I can trigger some data on my caddy server?

root@caddy:/etc/caddy# cscli lapi status
Loaded credentials from /etc/crowdsec/local_api_credentials.yaml
Trying to authenticate with username 05df2289423749b2b886804c4896e19emHuqX7QUukYJH4S2 on http://192.168.1.19:8080/
You can successfully interact with Local API (LAPI)

root@caddy:/etc/caddy# cscli lapi status
Loaded credentials from /etc/crowdsec/local_api_credentials.yaml
Trying to authenticate with username 05df2289423749b2b886804c4896e19emHuqX7QUukYJH4S2 on http://192.168.1.19:8080/
You can successfully interact with Local API (LAPI)

`
root@crowdsec-lapi:/usr/local/mesh_services/meshagent# cscli bouncer inspect caddy
─────────────────────────────────────────────────────
 Bouncer: caddy                                      
─────────────────────────────────────────────────────
 Created At    2025-06-03 12:21:01.470137 +0200 CEST 
 Last Update   2025-06-04 13:09:51.030755 +0200 CEST 
 Revoked?      false                                 
 IP Address    192.168.1.53                          
 Type          caddy-cs-bouncer                      
 Version       v0.8.1                                
 Last Pull     2025-06-04 13:09:51.030753 +0200 CEST 
 Auth type     api-key                               
 OS            ?                                     
 Auto Created  false

`
root@crowdsec-lapi:/usr/local/mesh_services/meshagent# cscli bouncer inspect caddy
─────────────────────────────────────────────────────
 Bouncer: caddy                                      
─────────────────────────────────────────────────────
 Created At    2025-06-03 12:21:01.470137 +0200 CEST 
 Last Update   2025-06-04 13:09:51.030755 +0200 CEST 
 Revoked?      false                                 
 IP Address    192.168.1.53                          
 Type          caddy-cs-bouncer                      
 Version       v0.8.1                                
 Last Pull     2025-06-04 13:09:51.030753 +0200 CEST 
 Auth type     api-key                               
 OS            ?                                     
 Auto Created  false

CrowdSec•6/4/25, 11:13 AM

Important Information

Thank you for getting in touch with your support request. To expedite a swift resolution, could you kindly provide the following information? Rest assured, we will respond promptly, and we greatly appreciate your patience. While you wait, please check the links below to see if this issue has been previously addressed. If you have managed to resolve it, please use run the command

/resolve

/resolve

or press the green resolve button below.

Log Files

If you possess any log files that you believe could be beneficial, please include them at this time. By default, CrowdSec logs to /var/log/, where you will discover a corresponding log file for each component.

Guide Followed (CrowdSec Official)

If you have diligently followed one of our guides and hit a roadblock, please share the guide with us. This will help us assess if any adjustments are necessary to assist you further.

Screenshots

Please forward any screenshots depicting errors you encounter. Your visuals will provide us with a clear view of the issues you are facing.

•

6/4/25, 11:13 AM

DJKatastrofOP•6/4/25, 11:13 AM

machine info from the lapi server

DDJKatastrof Hey, I have setup caddy with my lapi server But I get no metrics on my local ca...

Loz•6/4/25, 11:14 AM

At the moment I dont believe Caddy support metrics to LAPI.

DJKatastrofOP•6/4/25, 11:15 AM

oh, that explains it

is there any way I can trigger a http-cve or somethinh?

Loz•6/4/25, 11:15 AM

You can run a tool call which scans CVE's on the webserver

Loz•6/4/25, 11:16 AM

however, just be careful as it will ban your IP

DJKatastrofOP•6/4/25, 11:16 AM

But based on the connection and all, it seems like I setup everything correctly?
thanks!

Loz•6/4/25, 11:17 AM

Yeah if you connected to and your are going up when handling connections (as in log lines unless your using appsec) then yeah lgtm

DJKatastrofOP•6/4/25, 11:19 AM

Ah cool,
this goes up on my lapi server when i access a service externaly on

DDJKatastrof Ah cool, this goes up on my lapi server when i access a service externaly on ``...

Loz•6/4/25, 11:19 AM

Yeah so

caddy

caddy

is going to your server, but the connect crowdsec will push alerts once it notices something on caddy itself.

You can run on the connect one as well to see the parsed lines.

DJKatastrofOP•6/4/25, 11:22 AM

connected one? my caddy server?

What's the recommended config for the caddy crowdsec plugin?
right now mine is,

DDJKatastrof connected one? my caddy server? What's the recommended config for the caddy cr...

Loz•6/4/25, 11:24 AM

That is fine, but what I meant was you configured your

caddy

caddy

to log to a file then the local crowdsec is monitoring those logs?

DJKatastrofOP•6/4/25, 11:25 AM

Hmm, no. I have not configured anything like that, maybe I missed that?

DJKatastrofOP•6/4/25, 11:26 AM

I installed the plugin on caddy, created the bouncer on LAPI , took the api key, inserted into my caddy config, and then validated my machine on lapi.
Is there any more step?

Loz•6/4/25, 11:28 AM

Yes you would need to configure logging on Caddy, then setup an acquisition

here a snippet from my upcoming blog post

DJKatastrofOP•6/4/25, 11:29 AM

damn, i knew i missed something

DJKatastrofOP•6/4/25, 11:37 AM

That seem to have done it, I knew I had forgot somthing

DJKatastrofOP•6/4/25, 11:37 AM

This is my log in my global configuration

I just put "log" in my wildcard configuration so all my subdomains get logged and crowdsec

DJKatastrofOP•6/4/25, 11:38 AM

Like this

DJKatastrofOP•6/4/25, 11:44 AM

Another thing, im just trying this from my work computer
curl -I https://authelia.domain.com/admin

It shows whitelisted on cscli metrics

DJKatastrofOP•6/4/25, 11:46 AM

But it seems to be working now, thank you

hslatman•6/25/25, 1:13 PM

Hey, I have some very early support for metrics in the Caddy bouncer, but I disabled the updates from being sent, as there was some issue hitting the metrics endpoint on the CrowdSec instance. It might've been an issue just for this specific user, as I had it working fine in my environment, but since it was early I decided to just skip updating the metrics for now. It's still on my mind to get that working again, though

hslatman•6/25/25, 1:13 PM

Also some goodies on the way to test the interaction between Caddy and CrowdSec