CrowdSec

Development512MB+ RAM

Open-source, collaborative IPS — parse logs to detect attacks and share blocklists across the community

Download Server Compass Install CrowdSec to VPS

developmentdevtoolscrowdsecopen-sourceself-hosteddocker

Deploy CrowdSec in 3 Steps

Connect Your VPS

Add your server credentials to Server Compass

Select CrowdSec

Choose from our template library

Deploy & Configure

Fill in settings and click Deploy

No Docker knowledge required

Step-by-step deployment guide

Deploy CrowdSec on a VPS with Server Compass

Use the CrowdSec template in Server Compass to deploy a self-hosted collaborative intrusion prevention service on your VPS, then verify the setup screen.

About 10 minutesBrowser verified

Step 1

Open the server Apps tab

Select the tutorial-vps VPS, open the Apps tab, and start a new app deployment. Keep sensitive server details hidden before capturing or sharing screenshots.

Server Compass Apps tab before creating a CrowdSec app

Step 2

Choose an app template

Click New App and choose the template deployment path so Server Compass can load the built-in catalog.

Choosing to deploy an app from a Server Compass template

Step 3

Search for CrowdSec

Use the template picker search to find CrowdSec in the Server Compass template catalog.

Searching for CrowdSec in the Server Compass template picker

Step 4

Select the CrowdSec template

Choose the CrowdSec template. Server Compass fills the CrowdSec service, mounted host logs, selected collections, and Local API port.

CrowdSec template selected in Server Compass

Step 5

Review the CrowdSec settings

Confirm the app name and compose service. In this run, the app was named crowdsec-demo and used host port 4128.

Reviewing CrowdSec project settings and compose service

Step 6

Deploy CrowdSec

Review the generated compose settings, confirm the CrowdSec web port is available, and click Deploy.

Reviewing CrowdSec web port before deployment

Step 7

Watch the deployment progress

Keep the deployment modal open while Server Compass uploads the compose file, pulls the CrowdSec image, starts the container, and verifies the stack.

Server Compass deploying the CrowdSec template on the VPS

Step 8

Confirm CrowdSec is running

After deployment finishes, return to the Apps tab and confirm the CrowdSec app is marked Running with its application URL available.

CrowdSec template running in the Server Compass Apps tab

Step 9

Verify CrowdSec with cscli

Run cscli inside the deployed container and confirm the Linux and SSHD collections are loaded.

CrowdSec service verification output from cscli

After CrowdSec Opens

Place CrowdSec behind HTTPS before storing or sharing real files.
Change the generated admin password immediately after first login.
Keep the Local API restricted to trusted hosts or localhost.
Back up the CrowdSec config volume because it stores provider settings and the database.
Install a bouncer before expecting CrowdSec to block traffic.
Check cscli metrics and parser output before relying on alerts.
Keep the CrowdSec image updated for dependency and security fixes.

Verified Result

The CrowdSec container reported installed collections successfully through cscli.

Download Server Compass Docs

CrowdSec deployment questions

What does the CrowdSec template deploy?

It deploys the CrowdSec collaborative intrusion prevention service with configuration and data volumes.

Which port did the tutorial use?

The tutorial used host port 4128, which maps to the CrowdSec web UI on container port 8080.

Does CrowdSec need setup after deployment?

Yes. Verify collections with cscli, then register a bouncer for enforcement.

Should this become a blog post?

No. The deployment guide should live on the CrowdSec template detail page and be linked from the reusable template deployment docs page.

After Deployment

After deploying CrowdSec with Server Compass, complete these steps to finish setup

Verify parsers and scenarios loaded: `docker compose exec crowdsec cscli collections list`

Install a bouncer on your firewall, Traefik, nginx, or Cloudflare with the API key

(Optional) Enroll with the Central API: `docker compose exec crowdsec cscli console enroll YOUR_TOKEN`

Need help? Check out our documentation for detailed guides.

CrowdSec FAQ

Common questions about self-hosting CrowdSec

How do I deploy CrowdSec with Server Compass?

Simply download Server Compass, connect to your VPS, and select CrowdSec from the templates list. Fill in the required configuration and click Deploy. The entire process takes under 3 minutes.

What are the system requirements for CrowdSec?

CrowdSec requires a minimum of 512MB RAM. We recommend a VPS with at least 1024MB RAM for optimal performance. Any modern Linux server with Docker support will work.

Can I migrate my existing CrowdSec data?

Yes! Server Compass provides volume mapping that allows you to import existing data. You can also use standard CrowdSec backup and restore procedures.

How do I update CrowdSec to the latest version?

Server Compass makes updates easy. Simply click the Update button in your deployment dashboard, and the latest CrowdSec image will be pulled and deployed with zero downtime.

Is CrowdSec free to self-host?

CrowdSec is open-source software. You only pay for your VPS hosting (typically $5-20/month) and optionally Server Compass ($29 one-time). No subscription fees or per-seat pricing.

Related Templates

View all Development

PocketBase

Open-source backend in a single file with realtime database, auth, and file storage

Appwrite

Open-source backend-as-a-service - self-hosted Firebase alternative

Parse Server

Open-source backend framework with dashboard

Supabase

Full Supabase self-hosted with Kong, GoTrue Auth, Realtime, and Studio

Ready to Self-Host CrowdSec?

Download Server Compass and deploy CrowdSec to your VPS in under 3 minutes. No Docker expertise required.

Download Server Compass