Hi Stefan.
Do you know Crowdsec? https://www.crowdsec.net/
Their software replaces fail2ban with a more centralized crowd sourced thread discovery and blocklists, etc.
Anyways, I was trying to it setup in my open panel installation and it works initially. But after enabling some stuff for docker (they hook into the DOCKER-USER chain), the agent fails to start.
The issue is that the docker networks don't have ipv6 enabled internally, for example docker network inspect default_plan_nginx
:
"EnableIPv6": false, <----------------------- here
Containers": {
"[container id]": {
"Name": "[name]",
"EndpointID": "[endpoint id]",
"MacAddress": "02:42:ac:12:00:02",
"IPv4Address": "172.18.0.2/16",
"IPv6Address": "" <----------------------- here
Also the host and bridge networks have it disabled. So the solution is to disable ipv6 support from CrowdSec for now.
Is there a way to enable that in the docker networks? Or are there plans to enable it in the future?
I'm sorry I can't explain it 100% right. Docker is not something I master.