Anyone have tools to recommend for monitoring internet traffic and possible bot attacks on your yunohost server? Is netdata the best option, or any other recommendations?
We’ve been running yunohost on an intel nuc on a home network connection with 40mbps download and 11mbps upload with just a couple of applications installed (etherpad, nextcloud), using a yunohost nohost domain.
At first things were working well, but after a couple weeks, we are starting to see intermittent slowing down and failure of the etherpad. Sometimes its working, but every hour or so it will stop being responsive for a period.
I have a (possibly paranoid) suspicion that bot traffic may be the source of the issue. Also because the diagnosis warned that it was seeing an unusual number of failed authentications and asked if fail2ban was configured properly (we haven’t changed anything, so I imagine it is)
I’m looking for more monitoring tools to try to detect any pattern when the etherpad stops working, or other ideas
I am also looking not for a way to just monitor, but to also limit bot crawlers and AI scrapers… I know Anubis is getting each day more popular, but the ynh package is not yet mature nor official. Ideal would be to have a whole-server solution
I’ve been exploring this too — balancing visibility and protection without overcomplicating a YunoHost setup.
For monitoring, Netdata is a solid start, but you can also try:
GoAccess for real-time analysis of nginx logs (great for spotting spikes or suspicious IPs).
Fail2ban logs + fail2web to see patterns of brute-force attempts.
Grafana + Prometheus (via Docker) if you want long-term metrics.
For limiting bots, a few lighter options:
Use nginx rate limiting (limit_req_zone) per IP to throttle aggressive crawlers.
Add a basic WAF like modsecurity (there’s an experimental YunoHost package).
Keep Fail2ban active and add custom jails for apps like Nextcloud or Etherpad.
If you want something closer to Anubis’s approach, you can script IP filtering via CrowdSec — it integrates nicely with YunoHost and auto-shares abusive IP lists.
Would be great to see a native YunoHost package someday that combines these!
it looks like a genAI answer… there is no GoAccess package, the Docker mention is questionable and most of the “advices” are not relevant as a YunoHost user (not a packager) and the “experimental package” doesn’t exist, as far as i know
There is a growing concern about AI bots and their impact on resource usage. It would be great if there was an official howto for limiting AI bots “the yunohost way” instead of relying on home made solutions. Is Anubis a good option with the current state of configuration and packaging?