posts/haproxy-crowdsec/ #3

2023-08-29T13:51:49Z

giscus[bot]
bot Aug 29, 2023

posts/haproxy-crowdsec/

With the recent release of the official HAProxy bouncer for Crowdsec I thought I would give it a go. In doing this I found out that CrowdSec bouncer was detecting the IP using source IP, which required the use of CF-Connecting-IP to be set as the source IP. I was having issues because I have a loop in my HAProxy configuration that meant it was grabbing 127.0.0.1 as the client IP. I have resolved all of these issues and it is now working perfectly.

https://ciphermenial.github.io/posts/haproxy-crowdsec/

voklav · 2023-08-29T13:51:50Z

voklav
Aug 29, 2023 — with giscus

really appreciate your content!
I've been researching reverse proxies for a while now and it seems your setup is pretty similar to mine and for what I want.
As far as I understand CrowdSec and HAProxy are on the same vm / lxc ?

1 reply

ciphermenial Aug 29, 2023
Maintainer

Yeah, you install crowdsec locally on what you are protecting. I have installed on a bunch of my containers for different services e.g. firewall.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

posts/haproxy-crowdsec/ #3

{{title}}

Replies: 1 comment 1 reply

{{title}}

{{title}}

Select a reply

posts/haproxy-crowdsec/ #3

giscus[bot] bot Aug 29, 2023

posts/haproxy-crowdsec/

Replies: 1 comment · 1 reply

voklav Aug 29, 2023 — with giscus

ciphermenial Aug 29, 2023 Maintainer

giscus[bot]
bot Aug 29, 2023

Replies: 1 comment 1 reply

voklav
Aug 29, 2023 — with giscus

ciphermenial Aug 29, 2023
Maintainer