canasta crowdsec alerts
From canasta
canasta crowdsec alerts
Show recent CrowdSec alerts (detected attacks)
Synopsis
List the alerts the CrowdSec engine has raised — the attacks and probes its scenarios have detected over time. Unlike canasta crowdsec status, which shows the IP decisions currently being enforced, alerts include the detection history (and community/console-sourced events), so this answers "is CrowdSec actually catching anything?". Optionally filter by source IP. Read-only.
canasta crowdsec alerts [flags]
Examples
canasta crowdsec alerts
canasta crowdsec alerts --ip 203.0.113.50
canasta crowdsec alerts -i mysite
Flags
| Flag | Shorthand | Description | Default | Required | Orchestrator |
|---|---|---|---|---|---|
--id |
-i |
Canasta instance ID | * | Both | |
--ip |
Show only alerts for this source IP | Both |
* Defaults to the Canasta instance matching the current directory, if any.
Global flags
| Flag | Shorthand | Description | Default | Required | Orchestrator |
|---|---|---|---|---|---|
--help |
-h |
Show help message and exit | Both | ||
--verbose |
-v |
Enable verbose output | Both |