Traefik Falco Rules

A reverse proxy / load balancer that's easy, dynamic, automatic, fast, full-featured, open source, production proven, provides metrics, and integrates with every major cluster technology… No wonder it's so popular!

Unauthorized inbound tcp connection traefik

Detects inbound network connections to traefik on unexpected ports

Allowed ports:

  • 443
  • 80
  • 8080

Unexpected spawned process traefik

Detects an unexpected process spawned in the traefik container

Allowed processes:

  • traefik