I’ve set up CrowdSec with my Nginx Proxy Manager using Docker. Below is my configuration:
nginx:
image: lepresidente/nginx-proxy-manager:latest
container_name: nginx
environment:
- PUID=$PUID
- PGID=$PGID
- UMASK=000
- TZ=$TZ
- DISABLE_IPV6=true
- CROWDSEC_OPENRESTY_BOUNCER= |
ENABLED=true
API_URL=http://X.X.X.X:8080
API_KEY=XXXXXX
volumes:
- $DOCKER_PATH/nginx:/config
- $DOCKER_PATH/nginx/log:/config/log
networks:
dockervlan:
ipv4_address: X.X.X.X
host_network:
ports:
- 7818:8181
- 8080:8080
- 4443:4443
shm_size: "1gb"
restart: unless-stopped
crowdsec:
container_name: crowdsec
image: docker.io/crowdsecurity/crowdsec:latest
restart: unless-stopped
expose:
- 8080
environment:
- PUID=$PUID
- PGID=$PGID
- TZ=$TZ
- COLLECTIONS=crowdsecurity/nginx-proxy-manager
depends_on:
- 'nginx'
volumes:
- $DOCKER_PATH/crowdsec/acquis.yaml:/etc/crowdsec/acquis.yaml
- $DOCKER_PATH/nginx/log:/var/log/npm:ro
- $DOCKER_PATH/crowdsec/data:/var/lib/crowdsec/data/
- $DOCKER_PATH/crowdsec/config:/etc/crowdsec/
networks:
dockervlan:
ipv4_address: X.X.X.X
The problem is, that when I manually ban my mobile IP and try to access one of my Nginx proxies, I can still access the site.
I’ve checked the CrowdSec logs using the metrics
command, and it shows that the logs are being parsed. However, the blocking functionality doesn’t seem to be working.
How can I fix this issue? Any help would be greatly appreciated!