Linux
For those that prefer hands-on approach, you can as well manually install crowdsec.
Install our repositories
Installing our repositories allows you to access the latest packages of the Security Engine and Remediation Components.
We are using packagecloud.io service.
While curl | sudo shell
can be convenient for some, alternative installation methods are available.
curl -s https://install.crowdsec.net | sudo sh
Install the Security Engine
Before installing the package, you might want to check the ports that will be used.
- Debian/Ubuntu
- EL/Centos7/Amzn Linux 2
- EL/Centos Stream 8
- SUSE Linux
- OpenWRT
- CloudLinux
apt install crowdsec
yum install crowdsec
dnf install crowdsec
zypper install crowdsec
opkg install crowdsec
yum install crowdsec
You now have the Security Engine running ! You can move forward and install a remediation component, or take a tour of the software beforehand !
Directories:
- The application lives in the folder
/etc/crowdsec
. - The data is stored in the folder
/var/lib/crowdsec/data
.
Remediation Component
Keep in mind that a CrowdSec package is only in charge of the "detection", and won't block anything on its own. You need to deploy a Remediation Component to enforce decisions.
Enrolling your instance
The next step is to enroll your instance with the CrowdSec Console.
For the benefits, please visit the Console section.
Running CrowdSec on Raspberry Pi OS/Raspbian
Please keep in mind that Raspberry Pi OS is designed to work on all Raspberry Pi versions. Even if the port target is known as armhf, it's not exactly the same target as the debian named armhf port.
The best way to have a CrowdSec version for such an architecture is to do:
- install golang (all versions from 1.20 will do)
export GOARCH=arm
export CGO=1
- Update the GOARCH variable in the Makefile to
arm
- install the arm gcc cross compiler (On debian the package is gcc-arm-linux-gnueabihf)
- Compile CrowdSec using the usual
make
command