Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

No rule is applied on k8s env #1929

Open
yacinebbt opened this issue Jan 22, 2025 · 3 comments
Open

No rule is applied on k8s env #1929

yacinebbt opened this issue Jan 22, 2025 · 3 comments
Labels
next major Will be implemented in the next major version.

Comments

@yacinebbt
Copy link

Hello there,

I've deployed bunkerweb 1.5.10 on a kubernetes environnement

i am not able to deploy any rules from the list below

Image

I tried to apply different rules such as, Antibot ( choosing also multiple options, captcha, recaptcha, hcaptcha...), Auth basic, Country, Blacklist... but none of them worked.

even though the bunkerweb-ui shows a success

Image

then later, i upgraded the bunkerweb version from 1.5.10 to 1.5.12, and everything works just fine, yet no rule can be applied on services.
you can see clearly the stat of pods are running without any issue

Image

Debugging
here is an exemple of log entry from bunkerweb-ui pod when activating a rule:

[2025-01-22 10:59:13 +0000] [UI] [9] [⚠️ ] - {'USE_ANTIBOT': 'turnstile', 'REVERSE_PROXY_URL_1': '/', 'REVERSE_PROXY_HEADERS_1': '', 'REVERSE_PROXY_HEADERS_CLIENT_1': '', 'REVERSE_PROXY_BUFFERING_1': 'yes', 'REVERSE_PROXY_AUTH_REQUEST_1': '', 'REVERSE_PROXY_AUTH_REQUEST_SIGNIN_URL_1': '', 'REVERSE_PROXY_AUTH_REQUEST_SET_1': '', 'REVERSE_PROXY_CONNECT_TIMEOUT_1': '60s', 'REVERSE_PROXY_READ_TIMEOUT_1': '60s', 'REVERSE_PROXY_SEND_TIMEOUT_1': '60s', 'REVERSE_PROXY_INCLUDES_1': '', 'SERVER_NAME': 'xx.yyyyyy.zz'}

i configured the log level in the bunkerweb pods ( generated from the Daemonset) to info, but i can't see any important informations:

2025/01/22 12:21:39 [info] 1702995#1702995: *350719 [CLUSTERSTORE] redis reused times = 0, context: ngx.timer
2025/01/22 12:21:39 [info] 1702995#1702995: *350719 [CACHESTORE] hit level for dns_2.0.0.127.bl.blocklist.de = 3, context: ngx.timer
2025/01/22 12:21:39 [info] 1702995#1702995: *350719 [CACHESTORE] hit level for dns_2.0.0.127.xbl.spamhaus.org = 3, context: ngx.timer
2025/01/22 12:21:39 [notice] 1702995#1702995: *350719 [DNSBL] dnsbl check for xbl.spamhaus.org is successful, context: ngx.timer
2025/01/22 12:21:39 [info] 1702995#1702995: *350719 [CACHESTORE] hit level for dns_2.0.0.127.sbl.spamhaus.org = 3, context: ngx.timer
2025/01/22 12:21:39 [notice] 1702995#1702995: *350719 [DNSBL] dnsbl check for sbl.spamhaus.org is successful, context: ngx.timer
2025/01/22 12:21:39 [info] 1702995#1702995: *350719 [CACHESTORE] hit level for dns_2.0.0.127.problems.dnsbl.sorbs.net = 3, context: ngx.timer
2025/01/22 12:21:39 [error] 1702995#1702995: *350719 [DNSBL] dnsbl check for problems.dnsbl.sorbs.net failed, context: ngx.timer
2025/01/22 12:21:39 [notice] 1702995#1702995: *350719 [DNSBL] dnsbl check for bl.blocklist.de is successful, context: ngx.timer
2025/01/22 12:21:39 [info] 1702995#1702995: *350719 [INIT-WORKER] dnsbl:init_worker() call successful : success, context: ngx.timer
2025/01/22 12:21:39 [info] 1702995#1702995: *350719 [INIT-WORKER] called init_worker() methods of plugins, context: ngx.timer
2025/01/22 12:21:39 [info] 1702995#1702995: *350719 [INIT-WORKER] init phase ended, context: ngx.timer
2025/01/22 12:21:39 [notice] 1702995#1702995: *350719 [INIT-WORKER] BunkerWeb is ready to fool hackers ! 🚀, context: ngx.timer

it would be great for me if you have any hints or ideas to how to resolve this issue.

Regards,
Yacine.
@yacinebbt yacinebbt changed the title No rules is applied on k8s env No rule is applied on k8s env Jan 22, 2025
@yacinebbt
Copy link
Author

here is the k8s repo i am deploying: https://github.com/yacinebbt/bunkerweb-k8s

@TheophileDiot
Copy link
Member

Hi @yacinebbt,

Thank you for bringing this up! We are aware of the current issue with autoconf services and the web UI. In the next major release, the ability to edit autoconf-created services via the web UI will be removed. This decision was made because settings modified through the UI are not persistent, due to the underlying way autoconf services function.

This change aligns with the intended design of autoconf services, where all configurations should be defined within annotations and labels. By focusing on this approach, we ensure consistency and prevent potential conflicts or unexpected behaviors.

If you have further questions or need assistance preparing for this change, feel free to reach out!

@TheophileDiot TheophileDiot added the next major Will be implemented in the next major version. label Jan 31, 2025
@yacinebbt
Copy link
Author

Hello,

if i will undestand what you're saying, the current version of bunkerweb is not working on a k8s env, is that right? and we need to wait till the next major version of bunkerweb to be able to use bunkerweb on a k8s env?

please correct me if i'm mistaken, thank you.

Regards

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
next major Will be implemented in the next major version.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@yacinebbt @TheophileDiot