Basis:
wget https://packagecloud.io/install/repositories/crowdsec/crowdsec/script.deb.sh
chmod u+x script.deb.sh
os=debian dist=bookworm ./script.deb.sh
sudo apt install crowdsec
sudo apt install crowdsec-firewall-bouncer
nano /etc/crowdsec/config.yaml
sudo cscli console enroll -e context XXXXXXX
service crowdsec start
vi /etc/crowdsec/acquis.yaml
source: journalctl
journalctl_filter:
- _SYSTEMD_UNIT=pvedaemon.service
labels:
type: syslog
sudo systemctl restart crowdsec
service crowedsec-firewall-bouncer Restart
sudo apt install crowdsec-firewall-bouncer-iptables
cscli metrics
cscli collections install fulljackz/proxmox
sudo systemctl restart crowdsec