Difference between revisions of "Fail2ban Vuurmuur"
From MS Computech
(New page: Fail2ban + Vuurmuur <pre>apt-get install fail2ban nano /etc/fail2ban/action.d/vuurmuur.conf </pre><pre># Fail2Ban configuration file # # [Definition] # Option: actionban # Notes.: com...) |
|||
| Line 5: | Line 5: | ||
# | # | ||
# | # | ||
| − | |||
[Definition] | [Definition] | ||
| − | # Option: | + | # Option: actionban |
| − | # Notes.: | + | # Notes.: command executed when banning an IP. Take care that the |
| − | # | + | # command is executed with Fail2Ban user rights. |
| − | # Tags: | + | # Tags: <ip> IP address |
| − | # | + | # <failures> number of failures |
| − | # | + | # <time> unix timestamp of the ban time |
| − | # Values: | + | # Values: CMD |
# | # | ||
actionban = vuurmuur_script --block <ip> --apply | actionban = vuurmuur_script --block <ip> --apply | ||
| − | # Option: | + | # Option: actionunban |
| − | # Notes.: | + | # Notes.: command executed when unbanning an IP. Take care that the |
| − | # | + | # command is executed with Fail2Ban user rights. |
| − | # Tags: | + | # Tags: <ip> IP address |
| − | # | + | # <failures> number of failures |
| − | # | + | # <time> unix timestamp of the ban time |
| − | # Values: | + | # Values: CMD |
# | # | ||
actionunban = vuurmuur_script --unblock <ip> --apply | actionunban = vuurmuur_script --unblock <ip> --apply | ||
| + | |||
</pre> | </pre> | ||
The parameter –apply makes the rule active and reloads vuurmuurs configuration. Open /etc/fail2ban/jail.conf in your favorite editor and search the option banaction and change it as follows: | The parameter –apply makes the rule active and reloads vuurmuurs configuration. Open /etc/fail2ban/jail.conf in your favorite editor and search the option banaction and change it as follows: | ||
Revision as of 01:21, 27 May 2009
Fail2ban + Vuurmuur
apt-get install fail2ban nano /etc/fail2ban/action.d/vuurmuur.conf
# Fail2Ban configuration file
[Definition]
- Option: actionban
- Notes.: command executed when banning an IP. Take care that the
- command is executed with Fail2Ban user rights.
- Tags: <ip> IP address
- <failures> number of failures
- <time> unix timestamp of the ban time
- Values: CMD
actionban = vuurmuur_script --block <ip> --apply
- Option: actionunban
- Notes.: command executed when unbanning an IP. Take care that the
- command is executed with Fail2Ban user rights.
- Tags: <ip> IP address
- <failures> number of failures
- <time> unix timestamp of the ban time
- Values: CMD
actionunban = vuurmuur_script --unblock <ip> --apply
The parameter –apply makes the rule active and reloads vuurmuurs configuration. Open /etc/fail2ban/jail.conf in your favorite editor and search the option banaction and change it as follows:
nano /etc/fail2ban/jail.conf banaction = vuurmuur
