2020-11-30 09:37:17 +00:00
|
|
|
common:
|
|
|
|
daemonize: false
|
|
|
|
log_media: stdout
|
|
|
|
log_level: info
|
|
|
|
log_dir: /var/log/
|
|
|
|
working_dir: .
|
|
|
|
config_paths:
|
|
|
|
config_dir: /etc/crowdsec/
|
|
|
|
data_dir: /var/lib/crowdsec/data/
|
|
|
|
simulation_path: /etc/crowdsec/simulation.yaml
|
|
|
|
hub_dir: /etc/crowdsec/hub/
|
|
|
|
index_path: /etc/crowdsec/hub/.index.json
|
2021-09-09 14:05:21 +00:00
|
|
|
notification_dir: /etc/crowdsec/notifications/
|
|
|
|
plugin_dir: /usr/local/lib/crowdsec/plugins/
|
2020-11-30 09:37:17 +00:00
|
|
|
crowdsec_service:
|
|
|
|
acquisition_path: /etc/crowdsec/acquis.yaml
|
2023-03-10 16:30:08 +00:00
|
|
|
acquisition_dir: /etc/crowdsec/acquis.d
|
2020-11-30 09:37:17 +00:00
|
|
|
parser_routines: 1
|
2021-09-09 14:05:21 +00:00
|
|
|
plugin_config:
|
2023-01-04 15:43:35 +00:00
|
|
|
user: nobody
|
|
|
|
group: nobody
|
2020-11-30 09:37:17 +00:00
|
|
|
cscli:
|
|
|
|
output: human
|
|
|
|
db_config:
|
|
|
|
log_level: info
|
|
|
|
type: sqlite
|
|
|
|
db_path: /var/lib/crowdsec/data/crowdsec.db
|
|
|
|
flush:
|
|
|
|
max_items: 5000
|
|
|
|
max_age: 7d
|
2022-12-10 21:09:25 +00:00
|
|
|
use_wal: false
|
2020-11-30 09:37:17 +00:00
|
|
|
api:
|
|
|
|
client:
|
2021-02-02 13:15:13 +00:00
|
|
|
insecure_skip_verify: false
|
2020-11-30 09:37:17 +00:00
|
|
|
credentials_path: /etc/crowdsec/local_api_credentials.yaml
|
|
|
|
server:
|
|
|
|
log_level: info
|
|
|
|
listen_uri: 0.0.0.0:8080
|
|
|
|
profiles_path: /etc/crowdsec/profiles.yaml
|
2022-03-16 16:28:34 +00:00
|
|
|
trusted_ips: # IP ranges, or IPs which can have admin API access
|
|
|
|
- 127.0.0.1
|
|
|
|
- ::1
|
2021-08-25 16:30:05 +00:00
|
|
|
online_client: # Central API credentials (to push signals and receive bad IPs)
|
2023-01-04 15:43:35 +00:00
|
|
|
#credentials_path: /etc/crowdsec/online_api_credentials.yaml
|
2022-12-10 21:09:25 +00:00
|
|
|
tls:
|
|
|
|
agents_allowed_ou:
|
|
|
|
- agent-ou
|
|
|
|
bouncers_allowed_ou:
|
|
|
|
- bouncer-ou
|
2020-11-30 09:37:17 +00:00
|
|
|
prometheus:
|
|
|
|
enabled: true
|
|
|
|
level: full
|
|
|
|
listen_addr: 0.0.0.0
|
|
|
|
listen_port: 6060
|