[CrowdSec support]

I am head of community at CrowdSec (https://crowdsec.net) and although a bit biased (but also based on users requesting this on our Discord) I'll suggest support for CrowdSec on Unraid. In practice it would mean making Unraid-containers out of the existing ones. 

For those unfamilar to CrowdSec it consists of two parts: an agent who does log parsing and attack detection and manages the local stack and the bouncer which is the IPS part that does the actual threat mitigation. The simplest bouncer to use is the iptables/nftables bouncer (we have both) but there's no Docker container of that (not entirely true, we have a home assistant add-on (which is also Docker) but I don't know how much can be reused.

 

Here's the link to our Docker repo. As you can see there's also a bunch of other bouncers available as docker containers that could probably be converted easy is my guess.

 

Regarding the firewall bouncer it obviously needs to be running as root on the Unraid host which is in itself not a big deal and pretty easy to do so I don't think there's too much work in this. We'll be happy to collaborate and do what we can to help out. Please join our Discord at https://discord.gg/crowdsec and ping me there if you're interested. I'll be happy to convey contact with our dev team.

 

Let me know what you think

[Enable Promiscuous Mode]

I have a similar setup, same problem; the NIC I have forwarded to the VM via VFIO-PCI doesn't see anything but broadcast traffic - not the traffic I have forwarded to it using the span port in my switch. Did anyone have a solution to this? @bobbo489 @blutak @Inderjeet

 

Thanks!

 

/k

[[support] Bungy's docker repository]

Hi @Bungy

 

I have been using nzbgetvpn for a while with the Bridge networking option without problems. Thanks a lot for doing it! For various reasons I created a br0 network so I can put containers on the same network as my Unraid host. For the other dockers I have done this with (most notably radarr and sonarr) it works fine. Hosts on the br0 as well as the rest of my network can get in touch with them. However, for nzbgetvpn this is different. Hosts on my network EXCEPT those other containers on br0 can access nzbgetvpn. And I just don't get it.

 

root@localhost:# /usr/local/emhttp/plugins/dynamix.docker.manager/scripts/docker run -d --name='nzbgetvpn' --net='br0' --ip='10.20.30.205' --privileged=true -e TZ="Europe/Paris" -e HOST_OS="Unraid" -e 'TCP_PORT_6789'='6789' -e 'VPN_ENABLED'='yes' -e 'STRONG_CERTS'='yes' -e 'VPN_USER'='xxxxx' -e 'VPN_PASS'='xxxxxx' -e 'VPN_REMOTE'='de.privateinternetaccess.com' -e 'VPN_PORT'='1198' -e 'VPN_PROV'='pia' -e 'VPN_PROTOCOL'='udp' -e 'LAN_NETWORK'='10.20.30.0/24' -v '/mnt/user/downloads/':'/data':'rw' -v '/etc/localtime':'/etc/localtime':'ro' -v '/mnt/user/appdata/nzbgetvpn':'/config':'rw' 'jshridha/docker-nzbgetvpn' 

 

My network is 10.20.30.0/24.

 

Can you figure out what's wrong?

 

/klaus

[connection between 2 dockers (br0)]

Thanks for this. Unfortunately it didn't solve my problem as I have issues with multiple dockers all on br0 communicating. I just don't get it. 

[[Support] FoxxMD - elasticsearch]

How would I come about getting the rest of the ELK stack on Unraid? I have taken the official docker images of Kibana and Logstash from the docker hub and installed them, however I need to know of filemappings, portmappings, variables and such. I don’t really know anything about docker, so I was hoping that you had made those available on Unraid as well, but unfortunately no - and noone else has done it, it seems.

 

Thanks,

 

/Klaus

[Unraid 14th Birthday Case Badge Giveaway]

I run an unraid server with 13 disks (9 HDD + 4 SSD for cache) with Plex and basically everything else that I need (which turns out to be quite a lot). The only thing I miss is a stronger focus on security, meaning that I want an other user than root to be able to login via the webgui and I want U2F og 2FA access to secure it. I would also like a better support of running the webgui on a different (admin) subnet now that the the two first options aren’t doable (as far as I know). Moving the webgui to a different nic looks to be a bit of a hassle but doable at least.

 

All in all a good product. Focus more on security and I’ll be more happy, no doubt 

 

Thanks

 

/Klaus