Difference between revisions of "Fail2ban Vuurmuur"
From MS Computech
| Line 1: | Line 1: | ||
Fail2ban + Vuurmuur | Fail2ban + Vuurmuur | ||
<pre>apt-get install fail2ban | <pre>apt-get install fail2ban | ||
| − | nano /etc/fail2ban/action.d/vuurmuur.conf | + | nano /etc/fail2ban/action.d/vuurmuur.conf</pre> |
| − | </pre> | + | # Fail2Ban configuration file<br>#<br># |
| − | # | + | |
| − | |||
[Definition] | [Definition] | ||
| − | # Option: actionban | + | # Option: actionban<br># Notes.: command executed when banning an IP. Take care that the<br># command is executed with Fail2Ban user rights.<br># Tags: <ip> IP address<br># <failures> number of failures<br># <time> unix timestamp of the ban time<br># Values: CMD<br>#<br>actionban = vuurmuur_script --block <ip> --apply |
| − | # Notes.: command executed when banning an IP. Take care that the | + | |
| − | # command is executed with Fail2Ban user rights. | + | # Option: actionunban<br># Notes.: command executed when unbanning an IP. Take care that the<br># command is executed with Fail2Ban user rights.<br># Tags: <ip> IP address<br># <failures> number of failures<br># <time> unix timestamp of the ban time<br># Values: CMD<br>#<br>actionunban = vuurmuur_script --unblock <ip> --apply<br> |
| − | # Tags: <ip> IP address | + | |
| − | # <failures> number of failures | ||
| − | # <time> unix timestamp of the ban time | ||
| − | # Values: CMD | ||
| − | # | ||
| − | actionban = vuurmuur_script --block <ip> --apply | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
The parameter –apply makes the rule active and reloads vuurmuurs configuration. Open /etc/fail2ban/jail.conf in your favorite editor and search the option banaction and change it as follows: | The parameter –apply makes the rule active and reloads vuurmuurs configuration. Open /etc/fail2ban/jail.conf in your favorite editor and search the option banaction and change it as follows: | ||
<pre>nano /etc/fail2ban/jail.conf | <pre>nano /etc/fail2ban/jail.conf | ||
Revision as of 01:22, 27 May 2009
Fail2ban + Vuurmuur
apt-get install fail2ban nano /etc/fail2ban/action.d/vuurmuur.conf
- Fail2Ban configuration file
#
#
[Definition]
- Option: actionban
# Notes.: command executed when banning an IP. Take care that the
# command is executed with Fail2Ban user rights.
# Tags: <ip> IP address
# <failures> number of failures
# <time> unix timestamp of the ban time
# Values: CMD
#
actionban = vuurmuur_script --block <ip> --apply
- Option: actionunban
# Notes.: command executed when unbanning an IP. Take care that the
# command is executed with Fail2Ban user rights.
# Tags: <ip> IP address
# <failures> number of failures
# <time> unix timestamp of the ban time
# Values: CMD
#
actionunban = vuurmuur_script --unblock <ip> --apply
The parameter –apply makes the rule active and reloads vuurmuurs configuration. Open /etc/fail2ban/jail.conf in your favorite editor and search the option banaction and change it as follows:
nano /etc/fail2ban/jail.conf banaction = vuurmuur
