ashie/nixos-vps
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
98 commits 1 branch 0 tags 134 KiB
Commit graph

6 commits

Author SHA1 Message Date
ashisgreat22
4790078ff9 Fix CrowdSec GeoIP filter syntax 2026-03-18 21:54:34 +01:00
ashisgreat22
c3adfa7e25 Restrict incoming connections to DE via CrowdSec GeoIP 2026-03-18 21:53:05 +01:00
ashisgreat22
f82b822d16 feat: add firewall bouncer to CrowdSec module 
- Enable crowdsec-firewall-bouncer by default
- Auto-registers bouncer with local CrowdSec API
- Blocks malicious IPs at iptables/nftables level

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 13:58:13 +01:00
ashisgreat22
8a933fd9de fix: enable CrowdSec Local API for cscli 
Add LAPI server configuration with credentials file path.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 13:53:15 +01:00
ashisgreat22
e0de37b15f fix: simplify CrowdSec module 
Remove LAPI server config causing null coercion error.
Detection-only mode for now; bouncer can be added later.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 13:50:44 +01:00
ashisgreat22
211693ef3b feat: add CrowdSec security module 
- Wraps native NixOS CrowdSec service
- Configures SSH and nginx log acquisition
- Installs linux/nginx/sshd hub collections
- Supports IP whitelisting and ban duration config
- Optional nginx bouncer integration (requires manual API key setup)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-18 13:44:36 +01:00