Messages

1

24.7 Production Series / Re: HaProxy and Crowdsec

« on: October 12, 2024, 04:50:01 pm »

For me, I use Cloudflare proxy and my WAN only accepts inbound from the Cloudflare IP ranges (https://www.cloudflare.com/ips/.  That's all the firewall sees so it can't block by the remote IP that nginx sees.  I could set up the bouncer on each one of my services but would prefer to have it right on the reverse proxy.

2

24.7 Production Series / Re: HaProxy and Crowdsec

« on: October 12, 2024, 04:15:11 pm »

Second this for the nginx bouncer as well.  I'm currently considering moving nginx off of my opnsense box just to have this functionality but would ideally like to keep it where it's at.  Handosense was trying to get the HaProxy bouncer working too - https://forum.opnsense.org/index.php?topic=39377.0