Fix CrowdSec firewall-bouncer tar + CF WAF ruleset import #3

Merged

viktor merged 1 commit from wizard/crowdsec-fixes into master 2026-06-20 19:06:15 +00:00

Conversation 0 Commits 1 Files changed 2 +38 -13

viktor commented 2026-06-20 19:05:13 +00:00

Owner

Copy link

Follow-up fixes to PR #2: busybox tar extraction + import the existing per-zone WAF ruleset instead of creating a second one.

Follow-up fixes to PR #2: busybox tar extraction + import the existing per-zone WAF ruleset instead of creating a second one.

viktor added 1 commit 2026-06-20 19:05:14 +00:00

crowdsec+rybbit: fix firewall-bouncer tar extraction (busybox) + import existing CF WAF ruleset ... a351a66843

- initContainer used GNU tar --wildcards which fails on the busybox curl image (pod Init:Error); switch to extract-all + cp via shell glob.
- cloudflare_ruleset hit the per-zone singleton conflict; import the existing 'default' http_request_firewall_custom ruleset and manage all rules — CrowdSec ban/captcha first, the pre-existing disabled skip rule preserved verbatim.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

viktor merged commit 58fc6d5061 into master 2026-06-20 19:06:15 +00:00

viktor referenced this pull request from a commit 2026-06-20 19:06:16 +00:00

Merge pull request 'Fix CrowdSec firewall-bouncer tar + CF WAF ruleset import' (#3) from wizard/crowdsec-fixes into master

viktor referenced this pull request 2026-06-20 19:12:35 +00:00

Fix CF ruleset import id + depends_on #4

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: viktor/infra#3

No description provided.