A CrowdSec postoverflow whitelist collection that prevents legitimate AI crawlers from being banned.
CrowdSec's community blocklist and HTTP scenarios flag AI crawlers as attackers because they exhibit crawler-like behavior (high request rates, broad path scanning). This collection whitelists their official IP ranges so they pass through cleanly.
| Bot | Operator | IP source | Update cadence |
|---|---|---|---|
| GPTBot | OpenAI | openai.com/gptbot.json | Daily (automated) |
| OAI-SearchBot | OpenAI | openai.com/searchbot.json | Daily (automated) |
| PerplexityBot | Perplexity AI | perplexity.ai/perplexitybot.json | Daily (automated) |
| Applebot | Apple | search.developer.apple.com/applebot.json | Daily (automated) |
| YandexBot | Yandex | yandex.com/ips | Manual (JS-rendered page) |
IP ranges in data/ are refreshed daily by GitHub Actions and committed automatically.
# Install the postoverflow
cscli postoverflows install gomultify/ai-bots-whitelist \
--download-only \
--config-dir /etc/crowdsec
# Or copy manually
cp postoverflows/s01-whitelist/gomultify/ai-bots-whitelist.yaml \
/etc/crowdsec/postoverflows/s01-whitelist/
# Reload CrowdSec
systemctl reload crowdsec
# or in Docker:
docker compose restart crowdsec-agentcrowdsec-agent:
volumes:
- ./crowdsec-ai-bots-whitelist/postoverflows:/etc/crowdsec/postoverflows/s01-whitelist/gomultify:rocscli postoverflows list | grep ai-botsPRs welcome — especially for bots with official IP sources that aren't covered yet.