Traefik logs only showing internal docker IP address.
https://www.crowdsec.net/blog/securing-automated-app-deployment-crowdsec-and-coolify
i followed this guide to set crowdsec setup but ive tried pretty much everything but the traefik logs only show the docker ip and in the cscli metrics i can see everything being whitelisted.
this is snippet from the logs.
{"ClientAddr":"172.18.0.4:48260","ClientHost":"172.18.0.4","ClientPort":"48260","ClientUsername":"-","DownstreamContentSize":96,"DownstreamStatus":200,"Duration":1086157,"OriginContentSize":96,"OriginDuration":1038616,"OriginStatus":200,"Overhead":47541,"RequestAddr":"uptimekuma.pixelatedspace.me","RequestContentSize":0,"RequestCount":11,"RequestHost":"uptimekuma.pixelatedspace.me","RequestMethod":"GET","RequestPath":"/socket.io/?EIO=4\u0026transport=polling\u0026t=ql4teowf\u0026sid=xyF-6VBOXGGisX1LAACT","RequestPort":"-","RequestProtocol":"HTTP/1.1","RequestScheme":"http","RetryAttempts":0,"RouterName":"http-0-lggcwg0o0sgos04kcwks0s4w-uptime-kuma@docker","ServiceAddr":"172.18.0.3:3001","ServiceName":"http-0-lggcwg0o0sgos04kcwks0s4w-uptime-kuma@docker","ServiceURL":"http://172.18.0.3:3001","StartLocal":"2025-08-16T20:55:45.639280704Z","StartUTC":"2025-08-16T20:55:45.639280704Z","entryPointName":"http","level":"info","msg":"","time":"2025-08-16T20:55:45Z"}
2025-08-16T20:55:45.888491857Z
i have added the cloudflare trusted IP list, and enabled ipv4 forwarding and still no luck
Securing Automated App Deployment with CrowdSec & Coolify
Learn how to secure your automated app deployments with CrowdSec and Coolify and defend against abusive IPs and unwanted traffic.
4 Replies
Important Information
Thank you for getting in touch with your support request. To expedite a swift resolution, could you kindly provide the following information? Rest assured, we will respond promptly, and we greatly appreciate your patience. While you wait, please check the links below to see if this issue has been previously addressed. If you have managed to resolve it, please use run the command
/resolve or press the green resolve button below.Log Files
If you possess any log files that you believe could be beneficial, please include them at this time. By default, CrowdSec logs to /var/log/, where you will discover a corresponding log file for each component.
Guide Followed (CrowdSec Official)
If you have diligently followed one of our guides and hit a roadblock, please share the guide with us. This will help us assess if any adjustments are necessary to assist you further.
Screenshots
Please forward any screenshots depicting errors you encounter. Your visuals will provide us with a clear view of the issues you are facing.
© Created By WhyAydan for CrowdSec ❤️
time="2025-08-16T21:16:41Z" level=error msg="Get "http://127.0.0.1:9090/v1/decisions/stream?additional_pull=false&community_pull=false\": dial tcp 127.0.0.1:9090: connect: connection refused"
time="2025-08-16T21:16:51Z" level=error msg="auth-api: auth with api key failed return nil response, error: dial tcp 127.0.0.1:9090: connect: connection refused"
time="2025-08-16T21:16:51Z" level=error msg="Get "http://127.0.0.1:9090/v1/decisions/stream?additional_pull=false&community_pull=false\": dial tcp 127.0.0.1:9090: connect: connection refused"
are you using
cloudflared?