The nextcloud client sync is a popular tool used to synchronize files between multiple devices. However, running the client on multiple corporate machines can cause the IP addresses of those machines to be blocked on the corporate server running crowdSec. This can happen even if the nextcloud URLs are whitelisted. In such cases, the app.crowdsec.net alert page can show that the IP addresses have been banned due to the http-crawl-non_statics scenario.
To solve this issue, you can remove the http-crawl-non_statics scenario from crowdSec on the server by using the cscli scenario remove command. This will prevent crowdSec from blocking your client IPs in the future. With sudo priviledges launch a command shell (i.e. bash) and type the following.
cscli scenarios remove crowdsecurity/http-crawl-non_statics
I also recommend to do a
systemctl restart crowdsec
just to make sure that all the scenarios that are required are loaded and the one you removed is really no longer present.
I hope this helps!
