Issues with Crowdsec WP Plugin and Openlitespeed

1

I Not know if crowdsec plugin is designed to work with OpenLiteSpeed server

First scenario I have disable cloudflare proxy mode

I have got the logs on /wp-content/plugins/crowdsec/logs

> I have cloudflare my correct ip server logs and crowdsec logs

I have try some wrong logins for test purposes but never show me any captcha or ban.

Second scenario cloudflare proxy ON
– I have cloudflare IPs on Server logs
– I add cloudflare range Ips on advanced settings of crowdsec plugin
– I have correct Ip on /wp-content/plugins/crowdsec/logs but wrong Ip on server logs

I have try some wrong logins for test purposes but never show me any captcha or ban.

Third scenario cloudflare proxy On
– I have config openlitespeed to direct get forward ips like in this tutorial

– I have Real Ips on server log
– I have delete cloudflare range ips on advanced crowdsec tab
– I have correct Ip addreess on server log
– I have errors on /wp-content/plugins/crowdsec/logs

2022-12-11T21:20:07.399542+00:00|300|{“type”:“NON_AUTHORIZED_X_FORWARDED_FOR_USAGE”,“original_ip”:“95.154.x.x”,“x_forwarded_for_ip”:“95.154.x.x”}
2022-12-11T21:20:07.399995+00:00|200|{“type”:“CLEAN_VALUE”,“scope”:“Ip”,“value”:“95.154.x.x”,“cache”:“miss”}
2022-12-11T21:20:07.400199+00:00|200|{“type”:“FINAL_REMEDIATION”,“ip”:“95.154.x.x”,“remediation”:“bypass”}

_

I not found any log on for WP

/var/log/crowdsec.log

#cscli bouncers list
─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────
Name IP Address Valid Last API pull Type Version Auth Type
─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────
FirewallBouncer-1670687690 127.0.0.1 :heavy_check_mark: 2022-12-11T22:03:03Z crowdsec-firewall-bouncer v0.0.24-debian-pragmatic-8e00af2c9e83af22deab8c0c49a4ad9b8fc57a3f api-key
wordpress-bouncer 127.0.0.1 :heavy_check_mark: 2022-12-11T21:29:50Z WordPress CrowdSec Bouncer v1.10.0 api-key
─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────