@ openwrt routers often run on tiny hardware with limited storage, which makes adding intrusion prevention such as @ CrowdSec tricky

submitted a month ago by

@openwrt routers often run on tiny hardware with limited storage, which makes adding intrusion prevention such as @CrowdSec tricky.

I managed to set up only the lightweight firewall bouncer on #OpenWrt, and forward its logs via Syslog to the Security Engine in #Docker (server).

Result: community-powered IPS on tiny hardware. 🚀

Here's how to set this up yourself: kroon.email/site/en/posts/open

#OpenWrt #CrowdSec #SelfHosting #Security

Hot Top New Old

K3CAN@lemmy.radio

a month ago

Sounds like you’ve got the right idea.

It’s the bouncer that actually blocks the connections, so your edge router is a great place for it. If you’re sending the openwrt syslog to your security engine, too, you can also catch things like port scanning, which you wouldn’t be able to detect by only monitoring your server or application logs. Don’t forget to actually load your scenarios, though!

CrowdSec@infosec.exchange

a month ago

@0bs1d1an amazing to see CrowdSec running on @openwrt thanks for sharing the guide! 🚀

Create post

Join

#ipv6 #Spain #docker #security #hetzner #BananaPiR3 #Jazztel #fibre #ddns #orange #Jaztell #selfhosting #Crowdsec
Explore Tag Cloud

OpenWrt

OpenWrt news, tools, tips and discussion. Related projects, such as DD-WRT, Tomato and OpenSAN, are also on-topic.

Rules

Stay on topic:
All posts should be related to OpenWrt and related projects, including DD-WRT, Tomato, OpenSAN, and more!
No offensive or low-effort content:
Don’t post offensive or unhelpful content. Be nice - keep it civil and friendly!
Describe images/videos, no memes:
Please include a text description when sharing images or videos.
No self-promotion spam:
Active community members can post their apps if they answer any questions in the comments. Please do not post links to your own website, YouTube, blog content, or communities.
No reposts or rehosted content:
Share only the original source of an article, unless it’s not available in English, behind a paywall or requires logging in (like Twitter). Avoid reposting the same topic from other sources.
No editorializing titles:
You can add the author or website’s name if helpful, but keep article titles unchanged.
No piracy:
Do not share links or direct people to pirated content.
No unauthorized polls, bots, or giveaways:
Do not create polls, use bots, or organize giveaways without first contacting mods for approval.
No affiliate links:
Posting affiliate links is not allowed.

Modlog

Moderators

546 Subscribers 3 Local Subscribers

48 Posts 101 Comments

0 Daily Users 0 Weekly Users 11 Monthly Users 546 Users / 6 Months

@ openwrt routers often run on tiny hardware with limited storage, which makes adding intrusion prevention such as @ CrowdSec tricky

Insert image

Voting Options

@ openwrt routers often run on tiny hardware with limited storage, which makes adding intrusion prevention such as @ CrowdSec tricky

2 Comments