CyberMind-FR
252341e045
New packages: - secubox-crowdsec-setup: Automated installation script with: - Prerequisites verification (RAM, flash, OpenWrt version) - syslog-ng4 configuration for log forwarding - CAPI registration and hub setup - nftables firewall bouncer configuration - Backup/rollback, repair, and uninstall modes - luci-app-secubox-crowdsec: LuCI dashboard with: - Service status and statistics dashboard - Active decisions (bans) management - Security alerts viewer - Collections and bouncers management - UCI-based settings configuration Enhanced existing packages: - luci-app-crowdsec-dashboard: Added acquisition configuration wizard - secubox-app-crowdsec: Improved defaults and configuration Documentation: - CROWDSEC-OPENWRT-24.md with architecture, installation, and troubleshooting Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
31 lines
1.0 KiB
Plaintext
31 lines
1.0 KiB
Plaintext
config crowdsec 'crowdsec'
|
|
option data_dir '/srv/crowdsec/data'
|
|
option db_path '/srv/crowdsec/data/crowdsec.db'
|
|
|
|
# Acquisition configuration
|
|
config acquisition 'acquisition'
|
|
# Enable/disable specific log sources
|
|
option syslog_enabled '1'
|
|
option firewall_enabled '1'
|
|
option ssh_enabled '1'
|
|
option http_enabled '0'
|
|
# Syslog service settings (if using CrowdSec as syslog server)
|
|
option syslog_listen_addr '127.0.0.1'
|
|
option syslog_listen_port '10514'
|
|
# Log file paths (OpenWrt-specific)
|
|
option syslog_path '/var/log/messages'
|
|
option auth_log_path '/var/log/auth.log'
|
|
option kernel_log_path '/var/log/kern.log'
|
|
|
|
# Hub configuration
|
|
config hub 'hub'
|
|
# Auto-install recommended collections on first boot
|
|
option auto_install '1'
|
|
# Collections to install (space-separated)
|
|
option collections 'crowdsecurity/linux crowdsecurity/iptables'
|
|
# Additional parsers
|
|
option parsers 'crowdsecurity/syslog-logs crowdsecurity/whitelists'
|
|
# Hub update interval in days (0 to disable auto-update)
|
|
option update_interval '7'
|
|
|