New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Crowdsec vs Fail2ban
Which one do you use? Or do you use something else?
I was using Crowdsec lately because I kinda like the concept of the community, but I switched back to Fail2ban because it bans IPs right away, while with Crowdsec bouncers it seems that it takes several decisions before an IP is actually banned. So now I am using Fail2ban again configured to also ban IPs in Cloudflare and with filters for various exploits etc.
What do you use?
Thanked by 1greentea
Comments
I only have experience with Fail2ban, so I use that.
Crowdsec all the way. But I don't know if I will on some other servers.
Fail2ban
Enjoy.. if you can pay or not
https://www.sshguard.net/ (looks amazing )
https://www.digitalruby.com/ipban/
https://denyhosts.sourceforge.net/
https://rdpguard.com/
https://github.com/moteus/lua-spylog
https://github.com/nzhook/hookem-banem
https://yalis.fr/git/yves/pyruse/
https://www.ossec.net/
Using fail2ban but have been interested in trying out crowdsec
Have been using fail2ban all this time.
fail2ban
csf works out for me all time.
Crowdsec has some good concepts, but it seems to be more suitable for large websites with high traffic. It is a balance between efficiency and experience. For individual users, the sense of security brought by Fail2ban is obvious.
Fail2ban but have to try Crowdsec. I don't know it at all.