cs-cloudflare-bouncer icon indicating copy to clipboard operation
cs-cloudflare-bouncer copied to clipboard

Published 20 hours ago verified publisher icon crowdsecurity

Shared list across CF account domains

Open mannp opened this issue 3 years ago • 3 comments

Wondered if there is a cfg setting to select an existing ip list to use within a CF account?

For free accounts only one list is allowed, but I have used the cache config and tweaked it to keep the ip list from the first domain and used it for the second domain too.

It appears to work and keeps the domains semi separated with their own api keys.

There doesn't though appear to be a way to select the list in the actual cfg.yaml file?

Is that correct?

Thanks for creating this btw :)

I created the firewall rule for the second domain manually and so far, nothing is complaining 👍🏻

mannp avatar Feb 23 '22 13:02 mannp

@mannp Each domain/zone in account's zones(https://github.com/crowdsecurity/cs-cloudflare-bouncer/blob/d93dd28911e1913589b15684c15c221f8c33a588/config/crowdsec-cloudflare-bouncer.yaml#L13) block share IP lists.

There's no setting to use existing ip lists for now. This is tricky to implement due to recent changes (https://github.com/crowdsecurity/cs-cloudflare-bouncer/issues/77#issuecomment-1062715869).

sbs2001 avatar Mar 09 '22 09:03 sbs2001

Sorry, closed a bit fast. This seems a bit complicated currently, but might come up later.

buixor avatar Apr 29 '22 13:04 buixor

Sorry, closed a bit fast. This seems a bit complicated currently, but might come up later.

Np, thanks for considering at a later date.

mannp avatar Apr 29 '22 14:04 mannp