Post by NetBird

NetBird v0.69 is out, and the big addition for self-hosted users is CrowdSec IP reputation integration in the reverse proxy. If you're running NetBird self-hosted and exposing services behind the built-in reverse proxy, the proxy can now check every incoming request against the CrowdSec community blocklist and drop connections from known-malicious IPs before they reach your backend. The integration ships with three modes: - Off (default) - Observe, which logs verdicts without blocking traffic - Enforce, which actually blocks This feature is currently available for self-hosted deployments only. Support for NetBird Cloud is coming soon. A few other notes on the release: - macOS P2P connectivity got a proper overhaul (scoped default route + IP_BOUND_IF instead of the old exclusion route approach) - PCP joins NAT-PMP and UPnP for NAT traversal, so more peers connect direct instead of falling back to relay - New --disable-networks flag for managed deployments where a device should stay pinned to a specific network - Proxy can now redirect directly to SSO, skipping the intermediate page