Skip to main content
Version: v1.1

Install CrowdSec

For those that prefer hands-on approach, you can as well manually install crowdsec.

Install our repositories#

Installing our repositories allows you to access the latest packages of crowdsec and bouncers.

info

We are using packagecloud.io service. While curl | sudo bash can be convenient for some, alternative installation methods are available.

curl -s https://packagecloud.io/install/repositories/crowdsec/crowdsec/script.deb.sh | sudo bash

Install crowdsec#

sudo apt install crowdsec

You now have crowdsec running ! You can move forward and install a bouncer, or take a tour of the software beforehand !

caution

Keep in mind that CrowdSec is only in charge of the "detection", and won't block anything on its own. You need to deploy a bouncer to "apply" decisions.

Install a bouncer#

sudo apt install crowdsec-firewall-bouncer-iptables
info

While we're suggesting the most common firewall bouncer, check our hub for more bouncers. Find a bouncer directly for your application (nginx, php, wordpress) or your providers (cloudflare, AWS/GCP/...)

Running crowdsec on raspberry pi os/raspbian#

Please keep in mind that raspberry pi OS is designed to work on all raspberry pi versions. Even if the port target is known as armhf, it's not exactly the same target as the debian named armhf port.

The best way to have a crowdsec version for such an architecture is to do:

  1. install golang (all versions from 1.16 will do)
  2. export GOARCH=arm
  3. export CGO=1
  4. Update the GOARCH variable in the Makefile to arm
  5. install the arm gcc cross compilator (On debian the package is gcc-arm-linux-gnueabihf)
  6. Compile crowdsec using the usual make command