NS8 crowdsec-firewall-bouncer busy with restarting after failure (looping)

Support
,
1

FYI: Looking at CPU utilisation I saw unusual repeating peaks. Me or normal?

Nov 14 14:52:04 srv1 systemd[1]: Starting The firewall bouncer for CrowdSec…

Nov 14 14:52:04 srv1 crowdsec-firewall-bouncer[2452942]: time=“2023-11-14T14:52:04+01:00” level=info msg=“Loading yaml file: ‘/etc/crowdsec/bouncers/crowdsec-firewall-bouncer.yaml’ with additional values from ‘/etc/crowdsec/bouncers/crowdsec-firewall-bouncer.yaml.local’”

Nov 14 14:52:04 srv1 crowdsec-firewall-bouncer[2452942]: time=“2023-11-14T14:52:04+01:00” level=info msg=“Starting crowdsec-firewall-bouncer v0.0.28-el9-rpm-af6e7e25822c2b1a02168b99ebbf8458bc6728e5”

Nov 14 14:52:04 srv1 crowdsec-firewall-bouncer[2452942]: time=“2023-11-14T14:52:04+01:00” level=info msg=“backend type : ipset”

Nov 14 14:52:04 srv1 crowdsec-firewall-bouncer[2452942]: time=“2023-11-14T14:52:04+01:00” level=info msg=“iptables for ipv4 initiated”

Nov 14 14:52:04 srv1 crowdsec-firewall-bouncer[2452942]: time=“2023-11-14T14:52:04+01:00” level=info msg=“ipset clean-up : /usr/sbin/ipset -exist flush crowdsec-blacklists”

Nov 14 14:52:04 srv1 crowdsec-firewall-bouncer[2452942]: time=“2023-11-14T14:52:04+01:00” level=info msg=“ipset ‘crowdsec-blacklists’ doesn’t exist, skip”

Nov 14 14:52:04 srv1 crowdsec-firewall-bouncer[2452942]: time=“2023-11-14T14:52:04+01:00” level=info msg=“Checking existing set”

Nov 14 14:52:04 srv1 crowdsec-firewall-bouncer[2452942]: time=“2023-11-14T14:52:04+01:00” level=error msg=“set crowdsec-blacklists doesn’t exist, can’t manage content”

Nov 14 14:52:04 srv1 crowdsec-firewall-bouncer[2452942]: time=“2023-11-14T14:52:04+01:00” level=fatal msg=“iptables init failed: set crowdsec-blacklists doesn’t exist: exit status 1”

Nov 14 14:52:04 srv1 systemd[1]: crowdsec-firewall-bouncer.service: Control process exited, code=exited, status=1/FAILURE

Nov 14 14:52:04 srv1 clamav[2372]: SelfCheck: Database status OK.

Nov 14 14:52:04 srv1 firewalld[633]: WARNING: NOT_ENABLED: rule ‘(’-p’, ‘all’, ‘-m’, ‘set’, ‘–match-set’, ‘crowdsec-blacklists’, ‘src’, ‘-j’, ‘DROP’)’ is not in ‘ipv4:filter:INPUT’

Nov 14 14:52:04 srv1 runagent[2452951]: Warning: NOT_ENABLED: rule ‘(’-p’, ‘all’, ‘-m’, ‘set’, ‘–match-set’, ‘crowdsec-blacklists’, ‘src’, ‘-j’, ‘DROP’)’ is not in ‘ipv4:filter:INPUT’

Nov 14 14:52:04 srv1 runagent[2452951]: success

Nov 14 14:52:04 srv1 firewalld[633]: WARNING: NOT_ENABLED: rule ‘(’-p’, ‘all’, ‘-m’, ‘set’, ‘–match-set’, ‘crowdsec6-blacklists’, ‘src’, ‘-j’, ‘DROP’)’ is not in ‘ipv6:filter:INPUT’

Nov 14 14:52:04 srv1 runagent[2452952]: Warning: NOT_ENABLED: rule ‘(’-p’, ‘all’, ‘-m’, ‘set’, ‘–match-set’, ‘crowdsec6-blacklists’, ‘src’, ‘-j’, ‘DROP’)’ is not in ‘ipv6:filter:INPUT’

Nov 14 14:52:04 srv1 runagent[2452952]: success

Nov 14 14:52:05 srv1 systemd[1]: crowdsec-firewall-bouncer.service: Failed with result ‘exit-code’.

Nov 14 14:52:05 srv1 systemd[1]: Failed to start The firewall bouncer for CrowdSec.

Nov 14 14:52:15 srv1 systemd[1]: crowdsec-firewall-bouncer.service: Scheduled restart job, restart counter is at 18699.