From e6642ea08d2ca591a60dca1eed4dc3e6a5a37c9b Mon Sep 17 00:00:00 2001 From: Viktor Barzin Date: Sat, 6 Jan 2024 22:03:38 +0000 Subject: [PATCH] reenable crowdsec for nginx with 1 eybrow raised [ci skip] --- modules/kubernetes/nginx-ingress/main.tf | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/modules/kubernetes/nginx-ingress/main.tf b/modules/kubernetes/nginx-ingress/main.tf index bf147a49..4f21ff89 100644 --- a/modules/kubernetes/nginx-ingress/main.tf +++ b/modules/kubernetes/nginx-ingress/main.tf @@ -325,9 +325,9 @@ resource "kubernetes_config_map" "ingress_nginx_controller" { setvar:tx.block_harvester_ip=1,\ setvar:tx.block_spammer_ip=1" EOT - # plugins = "crowdsec" + # plugins = "crowdsec" plugins = "" - lua-shared-dicts = "crowdsec_cache: 50m" + lua-shared-dicts = "crowdsec_cache: 500m" server-snippet : <<-EOT lua_ssl_trusted_certificate "/etc/ssl/certs/ca-certificates.crt"; # Captcha #resolver local=on ipv6=off valid=600s;