I wish you guys had videos explaining things. But below is what I have can you tell me if it looks right?
INFO[0000] Buckets Metrics:
+----------------------------+---------------+-----------+--------------+--------+---------+
| BUCKET | CURRENT COUNT | OVERFLOWS | INSTANCIATED | POURED | EXPIRED |
+----------------------------+---------------+-----------+--------------+--------+---------+
| crowdsecurity/postfix-spam | - | - | 13 | 17 | 13 |
+----------------------------+---------------+-----------+--------------+--------+---------+
INFO[0000] Acquisition Metrics:
+--------------------------+------------+--------------+----------------+------------------------+
| SOURCE | LINES READ | LINES PARSED | LINES UNPARSED | LINES POURED TO BUCKET |
+--------------------------+------------+--------------+----------------+------------------------+
| /var/log/auth.log | 3853 | - | 3853 | - |
| /var/log/mysql/error.log | 37 | - | 37 | - |
| /var/log/syslog | 43748 | 17 | 43731 | 17 |
+--------------------------+------------+--------------+----------------+------------------------+
INFO[0000] Parser Metrics:
+----------------------------------+-------+--------+----------+
| PARSERS | HITS | PARSED | UNPARSED |
+----------------------------------+-------+--------+----------+
| child-crowdsecurity/postfix-logs | 322 | 17 | 305 |
| child-crowdsecurity/sshd-logs | 85 | - | 85 |
| crowdsecurity/dateparse-enrich | 17 | 17 | - |
| crowdsecurity/geoip-enrich | 17 | 17 | - |
| crowdsecurity/mysql-logs | 37 | - | 37 |
| crowdsecurity/non-syslog | 37 | 37 | - |
| crowdsecurity/postfix-logs | 118 | 17 | 101 |
| crowdsecurity/sshd-logs | 17 | - | 17 |
| crowdsecurity/syslog-logs | 47601 | 47601 | - |
| crowdsecurity/whitelists | 17 | 17 | - |
+----------------------------------+-------+--------+----------+
INFO[0000] Local Api Metrics:
+----------------------+--------+-------+
| ROUTE | METHOD | HITS |
+----------------------+--------+-------+
| /v1/alerts | GET | 7 |
| /v1/alerts/11 | GET | 1 |
| /v1/alerts/12 | GET | 1 |
| /v1/alerts/45 | GET | 1 |
| /v1/decisions/stream | GET | 24801 |
| /v1/watchers/login | POST | 34 |
+----------------------+--------+-------+
INFO[0000] Local Api Machines Metrics:
+----------------------------------+---------------+--------+------+
| MACHINE | ROUTE | METHOD | HITS |
+----------------------------------+---------------+--------+------+
| 74a9a1ba06e13820cbe5ac583b37c5c2 | /v1/alerts/11 | GET | 1 |
| 74a9a1ba06e13820cbe5ac583b37c5c2 | /v1/alerts/12 | GET | 1 |
| 74a9a1ba06e13820cbe5ac583b37c5c2 | /v1/alerts/45 | GET | 1 |
| 74a9a1ba06e13820cbe5ac583b37c5c2 | /v1/alerts | GET | 7 |
+----------------------------------+---------------+--------+------+
INFO[0000] Local Api Bouncers Metrics:
+---------------------+----------------------+--------+-------+
| BOUNCER | ROUTE | METHOD | HITS |
+---------------------+----------------------+--------+-------+
| cs-firewall-bouncer | /v1/decisions/stream | GET | 24801 |
+---------------------+----------------------+--------+-------+
INFO[0000] Loaded 13 collecs, 18 parsers, 22 scenarios, 3 post-overflow parsers
INFO[0000] unmanaged items : 37 local, 0 tainted
INFO[0000] PARSERS:
**--------------------------------------------------------------------------------------------------------------**
** NAME 📦 STATUS VERSION LOCAL PATH**
**--------------------------------------------------------------------------------------------------------------**
** crowdsecurity/modsecurity ✔️ enabled 0.1 /etc/crowdsec/parsers/s01-parse/modsecurity.yaml**
** crowdsecurity/mysql-logs ✔️ enabled 0.1 /etc/crowdsec/parsers/s01-parse/mysql-logs.yaml**
** crowdsecurity/whitelists ✔️ enabled 0.1 /etc/crowdsec/parsers/s02-enrich/whitelists.yaml**
** crowdsecurity/http-logs ✔️ enabled 0.4 /etc/crowdsec/parsers/s02-enrich/http-logs.yaml**
** crowdsecurity/iptables-logs ✔️ enabled 0.1 /etc/crowdsec/parsers/s01-parse/iptables-logs.yaml**
** crowdsecurity/postfix-logs ✔️ enabled 0.2 /etc/crowdsec/parsers/s01-parse/postfix-logs.yaml**
** crowdsecurity/sshd-logs ✔️ enabled 0.1 /etc/crowdsec/parsers/s01-parse/sshd-logs.yaml**
** crowdsecurity/dateparse-enrich ✔️ enabled 0.1 /etc/crowdsec/parsers/s02-enrich/dateparse-enrich.yaml**
** crowdsecurity/postscreen-logs ✔️ enabled 0.1 /etc/crowdsec/parsers/s01-parse/postscreen-logs.yaml**
** crowdsecurity/apache2-logs ✔️ enabled 0.4 /etc/crowdsec/parsers/s01-parse/apache2-logs.yaml**
** crowdsecurity/geoip-enrich ✔️ enabled 0.2 /etc/crowdsec/parsers/s02-enrich/geoip-enrich.yaml**
** crowdsecurity/syslog-logs ✔️ enabled 0.1 /etc/crowdsec/parsers/s00-raw/syslog-logs.yaml**
**--------------------------------------------------------------------------------------------------------------**
**INFO[0000] SCENARIOS:**
**---------------------------------------------------------------------------------------------------------------------------**
** NAME 📦 STATUS VERSION LOCAL PATH**
**---------------------------------------------------------------------------------------------------------------------------**
** ltsich/http-w00tw00t ✔️ enabled 0.1 /etc/crowdsec/scenarios/http-w00tw00t.yaml**
** crowdsecurity/http-sqli-probing ✔️ enabled 0.2 /etc/crowdsec/scenarios/http-sqli-probing.yaml**
** crowdsecurity/http-backdoors-attempts ✔️ enabled 0.2 /etc/crowdsec/scenarios/http-backdoors-attempts.yaml**
** crowdsecurity/http-bad-user-agent ✔️ enabled 0.3 /etc/crowdsec/scenarios/http-bad-user-agent.yaml**
** crowdsecurity/http-bf-wordpress_bf ✔️ enabled 0.2 /etc/crowdsec/scenarios/http-bf-wordpress_bf.yaml**
** crowdsecurity/http-crawl-non_statics ✔️ enabled 0.2 /etc/crowdsec/scenarios/http-crawl-non_statics.yaml**
** crowdsecurity/http-path-traversal-probing ✔️ enabled 0.2 /etc/crowdsec/scenarios/http-path-traversal-probing.yaml**
** crowdsecurity/http-xss-probing ✔️ enabled 0.2 /etc/crowdsec/scenarios/http-xss-probing.yaml**
** crowdsecurity/modsecurity ✔️ enabled 0.2 /etc/crowdsec/scenarios/modsecurity.yaml**
** crowdsecurity/ssh-bf ✔️ enabled 0.1 /etc/crowdsec/scenarios/ssh-bf.yaml**
** crowdsecurity/http-probing ✔️ enabled 0.2 /etc/crowdsec/scenarios/http-probing.yaml**
** crowdsecurity/http-sensitive-files ✔️ enabled 0.2 /etc/crowdsec/scenarios/http-sensitive-files.yaml**
** crowdsecurity/iptables-scan-multi_ports ✔️ enabled 0.1 /etc/crowdsec/scenarios/iptables-scan-multi_ports.yaml**
** crowdsecurity/mysql-bf ✔️ enabled 0.1 /etc/crowdsec/scenarios/mysql-bf.yaml**
** crowdsecurity/postfix-spam ✔️ enabled 0.2 /etc/crowdsec/scenarios/postfix-spam.yaml**
**---------------------------------------------------------------------------------------------------------------------------**
**INFO[0000] COLLECTIONS:**
**-------------------------------------------------------------------------------------------------------------**
** NAME 📦 STATUS VERSION LOCAL PATH**
**-------------------------------------------------------------------------------------------------------------**
** crowdsecurity/apache2 ✔️ enabled 0.1 /etc/crowdsec/collections/apache2.yaml**
** crowdsecurity/iptables ✔️ enabled 0.1 /etc/crowdsec/collections/iptables.yaml**
** crowdsecurity/linux ✔️ enabled 0.2 /etc/crowdsec/collections/linux.yaml**
** crowdsecurity/postfix ✔️ enabled 0.2 /etc/crowdsec/collections/postfix.yaml**
** crowdsecurity/sshd ✔️ enabled 0.1 /etc/crowdsec/collections/sshd.yaml**
** crowdsecurity/wordpress ✔️ enabled 0.1 /etc/crowdsec/collections/wordpress.yaml**
** crowdsecurity/base-http-scenarios ✔️ enabled 0.3 /etc/crowdsec/collections/base-http-scenarios.yaml**
** crowdsecurity/modsecurity ✔️ enabled 0.1 /etc/crowdsec/collections/modsecurity.yaml**
** crowdsecurity/mysql ✔️ enabled 0.1 /etc/crowdsec/collections/mysql.yaml**
**-------------------------------------------------------------------------------------------------------------**
**INFO[0000] POSTOVERFLOWS:**
**-----------------------------------------------------------------------------------------------------------------**
** NAME 📦 STATUS VERSION LOCAL PATH**
**-----------------------------------------------------------------------------------------------------------------**
** crowdsecurity/cdn-whitelist ✔️ enabled 0.3 /etc/crowdsec/postoverflows/s01-whitelist/cdn-whitelist.yaml**
**-----------------------------------------------------------------------------------------------------------------**
**-------------------------------------------------------------------------------------------------------------**
** NAME 📦 STATUS VERSION LOCAL PATH**
**-------------------------------------------------------------------------------------------------------------**
** crowdsecurity/mysql ✔️ enabled 0.1 /etc/crowdsec/collections/mysql.yaml**
** crowdsecurity/sshd ✔️ enabled 0.1 /etc/crowdsec/collections/sshd.yaml**
** crowdsecurity/base-http-scenarios ✔️ enabled 0.3 /etc/crowdsec/collections/base-http-scenarios.yaml**
** crowdsecurity/linux ✔️ enabled 0.2 /etc/crowdsec/collections/linux.yaml**
** crowdsecurity/modsecurity ✔️ enabled 0.1 /etc/crowdsec/collections/modsecurity.yaml**
** crowdsecurity/postfix ✔️ enabled 0.2 /etc/crowdsec/collections/postfix.yaml**
** crowdsecurity/wordpress ✔️ enabled 0.1 /etc/crowdsec/collections/wordpress.yaml**
** crowdsecurity/apache2 ✔️ enabled 0.1 /etc/crowdsec/collections/apache2.yaml**
** crowdsecurity/iptables ✔️ enabled 0.1 /etc/crowdsec/collections/iptables.yaml**