il/ilnmors-homelab
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

config: update whitelists.yaml.j2 to add whitelist expression to fix false positive of actual budget

Browse Source
This commit is contained in:
Il Lee
2026-03-21 19:30:15 +09:00
parent 8bff16d172
commit 9e5e7d337a
1 changed files with 8 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
config/services/systemd/common/crowdsec/bouncers/whitelists.yaml.j2
+8 -2
View File
@@ -1,11 +1,17 @@
name: crowdsecurity/whitelists name: crowdsecurity/whitelists
description: "Whitelist console/admin hosts only" description: "Local whitelist policy"
whitelist: whitelist:
reason: "trusted admin hosts" reason: "rules"
ip: ip:
# Console IP lists
- "127.0.0.1" - "127.0.0.1"
- "::1" - "::1"
- "{{ hostvars['fw']['network4']['console']['client'] }}" - "{{ hostvars['fw']['network4']['console']['client'] }}"
- "{{ hostvars['fw']['network4']['console']['wg'] }}" - "{{ hostvars['fw']['network4']['console']['wg'] }}"
- "{{ hostvars['fw']['network6']['console']['client'] }}" - "{{ hostvars['fw']['network6']['console']['client'] }}"
- "{{ hostvars['fw']['network6']['console']['wg'] }}" - "{{ hostvars['fw']['network6']['console']['wg'] }}"
{% if node['name'] == 'auth' %}
expression:
# budget local-first sql scrap rule
- "evt.Meta.target_fqdn == 'budget.ilnmors.com' && evt.Meta.http_path contains '/data/migrations/'"
{% endif %}