|
|
|
common:
|
|
|
|
daemonize: true
|
|
|
|
pid_dir: /var/run/
|
|
|
|
log_media: stdout
|
|
|
|
log_level: info
|
|
|
|
working_dir: .
|
|
|
|
|
|
|
|
config_paths:
|
|
|
|
config_dir: /etc/crowdsec/
|
|
|
|
data_dir: /var/lib/crowdsec/data/
|
|
|
|
simulation_path: /etc/crowdsec/simulation.yaml
|
|
|
|
hub_dir: /etc/crowdsec/hub/
|
|
|
|
index_path: /etc/crowdsec/hub/.index.json
|
|
|
|
|
|
|
|
crowdsec_service:
|
|
|
|
acquisition_path: /etc/crowdsec/acquis.yaml
|
|
|
|
parser_routines: 1
|
|
|
|
|
|
|
|
cscli:
|
|
|
|
output: human
|
|
|
|
hub_branch: master
|
|
|
|
|
|
|
|
db_config:
|
|
|
|
log_level: info
|
|
|
|
{% if crowdsec_db_engine == 'mysql' %}
|
|
|
|
type: mysql
|
|
|
|
user: {{ crowdsec_db_user }}
|
|
|
|
password: {{ crowdsec_db_pass | quote }}
|
|
|
|
db_name: {{ crowdsec_db_name }}
|
|
|
|
host: {{ crowdsec_db_server }}
|
|
|
|
port: {{ crowdsec_db_port }}
|
|
|
|
{% else %}
|
|
|
|
db_path: /var/lib/crowdsec/data/crowdsec.db
|
|
|
|
{% endif %}
|
|
|
|
flush:
|
|
|
|
max_items: 100000
|
|
|
|
max_age: 730d
|
|
|
|
|
|
|
|
api:
|
|
|
|
client:
|
|
|
|
insecure_skip_verify: false
|
|
|
|
credentials_path: /etc/crowdsec/local_api_credentials.yaml
|
|
|
|
|
|
|
|
{% if crowdsec_lapi_enabled %}
|
|
|
|
server:
|
|
|
|
log_level: info
|
|
|
|
listen_uri: 0.0.0.0:{{ crowdsec_lapi_port }}
|
|
|
|
profiles_path: /etc/crowdsec/profiles.yaml
|
|
|
|
{% if crowdsec_capi_enabled %}
|
|
|
|
online_client:
|
|
|
|
credentials_path: /etc/crowdsec/online_api_credentials.yaml
|
|
|
|
{% endif %}
|
|
|
|
{% endif %}
|
|
|
|
|
|
|
|
prometheus:
|
|
|
|
enabled: true
|
|
|
|
level: full
|
|
|
|
listen_addr: {{ (crowdsec_prometheus_src_ip | length > 0) | ternary(ansible_all_ipv4_addresses[0],'127.0.0.1') }}
|
|
|
|
listen_port: {{ crowdsec_prometheus_port }}
|
|
|
|
|