While testing the banning with CrowdSec, I did:
docker exec crowdsec cscli decisions add --ip 1.2.3.4 --duration 1h --type ban
Can see this rule added in the decision list:
docker exec crowdsec cscli decisions list
Source: cscli, Reason: manual ‘captcha’ from ‘localhost’
But if I’m connecting from this IP (it’s a VPN server I chose to test with it, can confirm the same IP is to be seen for the device I’m connecting from) can reach the Pangolin log in page.
And the applications on subdomains provided by Pangolin continue to work.
Why is that? I was thinking this should enforce the 404, yet can’t make it work.
I have some IP in allowlist docker exec crowdsec cscli allowlist inspect my_allowlist, but not this one.
CrowdSec is installed by the Pangolin installer and there is no host system boucer (firewall) installed yet.