pangolin_mirror/pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2026-03-07 11:16:37 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'main' into dev

Browse Source
This commit is contained in:
Owen
2025-04-07 21:16:05 -04:00
parent a708750fea 0450f62108
commit f078ee6051
5 changed files with 13 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
install/config/crowdsec/acquis.d/appsec.yaml Normal file
View File

@@ -0,0 +1,6 @@
listen_addr: 0.0.0.0:7422
appsec_config: crowdsecurity/appsec-default
name: myAppSecComponent
source: appsec
labels:
type: appsec

5
install/config/crowdsec/acquis.d/traefik.yaml Normal file
View File

@@ -0,0 +1,5 @@
poll_without_inotify: false
filenames:
- /var/log/traefik/*.log
labels:
type: traefik

18
install/config/crowdsec/acquis.yaml
View File

@@ -1,18 +0,0 @@
filenames:
- /var/log/auth.log
- /var/log/syslog
labels:
type: syslog
---
poll_without_inotify: false
filenames:
- /var/log/traefik/*.log
labels:
type: traefik
---
listen_addr: 0.0.0.0:7422
appsec_config: crowdsecurity/appsec-default
name: myAppSecComponent
source: appsec
labels:
type: appsec

8
install/config/crowdsec/docker-compose.yml
View File

@@ -7,7 +7,6 @@ services:
COLLECTIONS: crowdsecurity/traefik crowdsecurity/appsec-virtual-patching crowdsecurity/appsec-generic-rules COLLECTIONS: crowdsecurity/traefik crowdsecurity/appsec-virtual-patching crowdsecurity/appsec-generic-rules
ENROLL_INSTANCE_NAME: "pangolin-crowdsec" ENROLL_INSTANCE_NAME: "pangolin-crowdsec"
PARSERS: crowdsecurity/whitelists PARSERS: crowdsecurity/whitelists
ACQUIRE_FILES: "/var/log/traefik/*.log"
ENROLL_TAGS: docker ENROLL_TAGS: docker
healthcheck: healthcheck:
test: ["CMD", "cscli", "capi", "status"] test: ["CMD", "cscli", "capi", "status"]
@@ -18,13 +17,8 @@ services:
- ./config/crowdsec:/etc/crowdsec # crowdsec config - ./config/crowdsec:/etc/crowdsec # crowdsec config
- ./config/crowdsec/db:/var/lib/crowdsec/data # crowdsec db - ./config/crowdsec/db:/var/lib/crowdsec/data # crowdsec db
# log bind mounts into crowdsec # log bind mounts into crowdsec
- ./config/crowdsec_logs/auth.log:/var/log/auth.log:ro # auth.log
- ./config/crowdsec_logs/syslog:/var/log/syslog:ro # syslog
- ./config/crowdsec_logs:/var/log # crowdsec logs
- ./config/traefik/logs:/var/log/traefik # traefik logs - ./config/traefik/logs:/var/log/traefik # traefik logs
ports: ports:
- 6060:6060 # metrics endpoint for prometheus - 6060:6060 # metrics endpoint for prometheus
expose:
- 6060 # metrics endpoint for prometheus
restart: unless-stopped restart: unless-stopped
command: -t # Add test config flag to verify configuration command: -t # Add test config flag to verify configuration

2
install/crowdsec.go
View File

@@ -25,7 +25,7 @@ func installCrowdsec(config Config) error {
} }
os.MkdirAll("config/crowdsec/db", 0755) os.MkdirAll("config/crowdsec/db", 0755)
os.MkdirAll("config/crowdsec_logs/syslog", 0755) os.MkdirAll("config/crowdsec/acquis.d", 0755)
os.MkdirAll("config/traefik/logs", 0755) os.MkdirAll("config/traefik/logs", 0755)
if err := copyDockerService("config/crowdsec/docker-compose.yml", "docker-compose.yml", "crowdsec"); err != nil { if err := copyDockerService("config/crowdsec/docker-compose.yml", "docker-compose.yml", "crowdsec"); err != nil {