Cloudflare, Traefik and Crowdsec
As the title implies I am running services like nginx (webservers) behind Crowdsec behind Traefik behind Cloudflare.
I have almost correctly setup the „CTS“ Stack (crowdsec makes decisions parses logs, etc.), but one key thing is not working:
The fact that I am behind the Cloudflare proxy means that traefik receives Requests from Cloudflare IPs, but that isnt the issue (?),
because I have setup a CF-Real-IP plugin with traefik, but Crowdsec is still banning CF IPs which is really devastating.
Each time some malicious actor starts http-probing etc. a CF IP gets banned, the longer this goes on the more CF IPs get banned and the more I am locked out of my network.
So after sooo many tries I am trying my luck here, does (/did) anyone have (/had) the same issue (, how did you fix it) and have any Ideas on a solution?
Thanks in advance!
I have almost correctly setup the „CTS“ Stack (crowdsec makes decisions parses logs, etc.), but one key thing is not working:
The fact that I am behind the Cloudflare proxy means that traefik receives Requests from Cloudflare IPs, but that isnt the issue (?),
because I have setup a CF-Real-IP plugin with traefik, but Crowdsec is still banning CF IPs which is really devastating.
Each time some malicious actor starts http-probing etc. a CF IP gets banned, the longer this goes on the more CF IPs get banned and the more I am locked out of my network.
So after sooo many tries I am trying my luck here, does (/did) anyone have (/had) the same issue (, how did you fix it) and have any Ideas on a solution?
Thanks in advance!
