Differences

This shows you the differences between two versions of the page.

--- crowdsec_setup [2020/11/15 23:54] – neoon
+++ crowdsec_setup [2021/11/25 22:42] (current) – external edit 127.0.0.1
@@ Line 6: / Line 6: @@
   cd crowdsec-v*
   ./wizard.sh -i
-**Basic packages you may wanna install**\\
+**Basic packages you may wanna install/enable**\\
-https://hub.crowdsec.net/author/crowdsecurity/collections/sshd #Installer\\
+https://hub.crowdsec.net/author/crowdsecurity/collections/sshd\\
-https://hub.crowdsec.net/author/crowdsecurity/collections/iptables #Installer\\
+https://hub.crowdsec.net/author/crowdsecurity/collections/iptables\\
-https://hub.crowdsec.net/author/crowdsecurity/bouncers/cs-netfilter-blocker #Manual \\
+{{:selections.png?600|}}\\
+**Basic Bouncer you may wanna install**\\
+https://hub.crowdsec.net/author/crowdsecurity/bouncers/cs-netfilter-blocker\\
+  wget https://github.com/crowdsecurity/cs-netfilter-blocker/releases/download/v0.1.0/cs-netfilter-blocker.tgz
+  tar xzvf cs-netfilter-blocker.tgz
+  cd cs-netfilter-blocker-v*
+  ./install.sh
+  systemctl status netfilter-blocker
+**Optional scenarios**\\
+Bans a range if more than 5 ips from said range are banned.\\
+https://hub.crowdsec.net/author/crowdsecurity/configurations/ban-defcon-drop_range\\
+  cscli install scenario crowdsecurity/ban-defcon-drop_range
+Count the number of unique ips that performed ssh_bruteforces\\
+https://hub.crowdsec.net/author/crowdsecurity/configurations/ban-report-ssh_bf_report\\
+  cscli install scenario crowdsecurity/ban-report-ssh_bf_report
+**Check Ban's**
+  cscli ban list
+  #or
+  cat /var/log/netfilter-blocker.log
+**Dashboard**\\
+Needs Docker\\
+  cscli dashboard setup
+**Dashboard Reset Password**
+  cscli dashboard setup -f
+**Dashboard Removal**
+  cscli dashboard stop
+  docker ps -a
+  docker rm CONTAINER ID