s0me1newithhand7s/reNixos
1
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
reNixos/kyra/services/crowdsec.nix
s0me1newithhand7s ab2a010175 kyra(hardening): crowdsec init 
Signed-off-by: s0me1newithhand7s <git+me@hand7s.org>
2026-05-03 16:06:55 +03:00

51 lines
918 B
Nix
Raw Permalink Blame History

_: {
services = {
crowdsec = {
enable = true;
settings = {
hub = {
collections = [
"crowdsecurity/linux"
"crowdsecurity/traefik"
"crowdsecurity/http-dos"
"crowdsecurity/cloudflare"
];
};
acquisitions = [
{
source = "journalctl";
journalctl_filter = [
"_SYSTEMD_UNIT=traefik.service"
];
labels = {
type = "traefik";
};
}
{
source = "journalctl";
journalctl_filter = [
"_SYSTEMD_UNIT=sshd.service"
];
labels = {
type = "syslog";
};
}
];
};
};
crowdsec-firewall-bouncer = {
enable = true;
settings = {
mode = "firewalld";
};
};
};
}
Reference in a new issue View git blame Copy permalink