upstream/opnsense-plugins
1
0
Fork 0
mirror of https://github.com/opnsense/plugins.git synced 2026-04-15 22:20:31 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-plugins/security/crowdsec/pkg-descr
mmetc 8fe6a8dce6
security/crowdsec: refactor service management, bump version (#4868) 
* crowdsec: refactor service management

* allow disabling agent or lapi separately
2025-08-07 08:31:54 +02:00

119 lines
2.9 KiB
Text
Raw Permalink Blame History

Crowdsec is an open-source, lightweight software, detecting peers with
aggressive behaviors to prevent them from accessing your systems. Its user
friendly design and assistance offers a low technical barrier of entry and
nevertheless a high security gain.
WWW: https://crowdsec.net/
Plugin Changelog
================
1.0.12
* Fix and update service management (start/stop/reload/configure)
1.0.11
* convert tables to UIBootGrid (required for opnsense 25.7)
* separate page for each table
* IPv6 validation for LAPI listen address broken (contributed by BPplays)
* Fix alert time not showing in grid
1.0.10
* changed alias names crowdsec*blacklists -> crowdsec*blocklists
* added rules for outgoing connections too
* added enroll_key to settings for automatic enrollment
* option to disable rule generation (bring your own rules!)
* code cleanup, reformat, typing
1.0.9
* Update rule reference ($ -> <>) for opnsense 25.1
1.0.8
* Enable use_wal, remove warning
* Randomize cron execution over 5 minutes
* Refactor javascript
* Fix initial service start with no pending hub updates (1.6.1)
* Add input validation for `rules_tag` to prevent invalid `pf` syntax.
* Fix service start when lapi is disabled (revision 1)
1.0.7
* Add option `retry_initial_connect` to bouncer configuration for more robust startup. The option was introduced in Crowdsec 1.5.4.
1.0.6
* default acquis.d/opnsense.yaml to "poll_without_inotify=true" which is now required
to acquire content from symlinks.
1.0.5
* fix ban example
1.0.4
* Add force_inotify option to aquire logs when /var/log is in RAM, otherwise
a restart of the service is required after a reboot.
1.0.3
* acquire filter logs for the firewallservices/pf collection (port scans).
If you already added it manually, you can remove it now to avoid counting
the events twice.
1.0.2
* updated cron job (reload only when there are updates), added small random delay
* limit log collection to latest.log (requires 22.7+)
* some javascript lint
1.0.1
* fixed live logs
1.0
* first non-devel release
* changed service restart to reload on hub update; fixed "service oscrowdsec status"
0.2
* first published release
* added options `lapi_enabled`, `crowdsec_firewall_verbose`
* removed options `crowdsec_flags`, `crowdsec_firewall_flags`
* changed default for `agent_enabled`, `firewall_bouncer_enabled` to 1
0.1
* fixed packet tags with ipv6
* custom `crowdsec_flags`, `crosdsec_firewall_flags`
0.0.9
* fixed the javascript, 0.0.8 had a syntax error
* new option: rules_tag
* new option: lapi_manual_configuration
* ipv4/ipv6 validation with regexp
0.0.8
* crowdsec update 1.3.2
* configurable `rules_log` and LAPI address/port
0.0.7
* automated removal of Alias objects when the plugin is uninstalled
0.0.6
* crowdsec update 1.3.1.r1
* bouncer update to 0.0.23.r1
* automated creation of Alias and Rule objects
0.0.5
* fixed an issue that prevented the bouncer from banning IPs on opnsense
* fixed support for notification plugins
Reference in a new issue View git blame Copy permalink