Commit `c0e9f1641fba`

Vincent Demeester <vincent@sbr.pm>

2026-03-02 04:56:16

fix(kerkouane): exclude ntfy from caddy-flood filter

ntfy clients generate hundreds of legitimate requests on reconnect via SSE/polling, triggering the flood jail. Same root cause as the caddy-auth self-ban.

main

1 parent ca96505

Changed files (1)

systems

kerkouane

extra.nix

@@ -186,6 +186,7 @@ in
       [Definition]
       failregex = ^.*"remote_ip":"<HOST>".*"status":\d+,.*$
       ignoreregex = ^.*"remote_ip":"10\.100\.0\..*$
+                    ^.*"host":"ntfy\.sbr\.pm".*$
       datepattern = "ts":{EPOCH}
     '';
   };

Commit c0e9f1641fba

Commit `c0e9f1641fba`