diff options
Diffstat (limited to 'linux/fail2ban.html')
| -rw-r--r-- | linux/fail2ban.html | 54 |
1 files changed, 54 insertions, 0 deletions
diff --git a/linux/fail2ban.html b/linux/fail2ban.html new file mode 100644 index 0000000..71bbdf9 --- /dev/null +++ b/linux/fail2ban.html @@ -0,0 +1,54 @@ +<!DOCTYPEhtml> +<htmldir="ltr" lang="en"> + <head> + <meta charset='utf-8'> + <title>Fail2ban</title> + </head> + <body> + + <a href="index.html">Tools Index</a> + + <h1>Fail2ban</h1> + + <pre> + $ prt-get depinst fail2ban + </pre> + + <h2 id="conf">1. Configure</h2> + + <p>To start fail2ban at next boot edit /etc/rc.conf and add fail2ban. + Fail2ban will verify if /etc/fail2ban/jail.local exist, if exist will + use it. Copy distribution jail.conf to jail.locol;</p> + + <pre> + $ sudo cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local + </pre> + + <p>Edit /etc/fail2ban/jail.local, example configuration;</p> + + <pre> + [ssh-iptables] + + enabled = enable + filter = sshd + action = iptables[name=SSH, port=ssh, protocol=tcp] + sendmail-whois[name=SSH, dest=admin@box, sender=fail2ban@box, sendername="fail2ban"] + logpath = /var/log/auth + maxretry = 5 + </pre> + + <p>Test a filter</p> + + <pre> + # fail2ban-regex /var/log/iptables iptables-ssh.conf + </pre> + + <a href="index.html">Tools Index</a> + + <p> + This is part of the LeetIO System Documentation. + Copyright (C) 2021 + LeetIO Team. + See the file <a href="../fdl-1.3-standalone.html">Gnu Free Documentation License</a> for copying conditions.</p> + </body> +</html> |