Getting Started
New to CrowdSec blocklists? Read the Introduction first to understand how they work and the available tiers. Then choose one of the two paths below — most people pick one or the other, not both.
Choose your path
Path A · Self-hosted
CrowdSec Security Engine
Ingest blocklists with the open-source agent. Behavior detection, parsing pipeline, Local API — everything runs on your infra.
Behavior + reputation in one engine
60+ bouncers (NGINX, FW, CDN…)
Free community blocklists included
Path B · No agent
Direct Integrations
Push CrowdSec blocklists straight into your existing firewall, CDN, or WAF. No agent to install — just configure your subscription.
Cloudflare, AWS WAF, Fortinet…
Setup in minutes from the Console
Premium tiers for richer feeds
Quick comparison
| Security Engine | Integrations | |
|---|---|---|
| Setup time | ~ 10 min | ~ 2 min |
| Runs on | Your infrastructure | Your existing firewall / CDN |
| Behavior detection | Yes — full engine | No — blocklists only |
| Best for | Servers, gateways, k8s | Edge, WAF, managed CDN |
| Free community feed | Included | Included |