Re: handmatige ban IP m.b.v. fail2ban-client
On Sat, Sep 27, 2014 at 08:36:08AM +0200, Rutger van Sleen wrote:
> On 27-09-2014 08:23, Geert Stappers wrote:
> >Hoi,
> >
> >Hoe gedraagt `fail2ban-client set <JAIL> banip <IP>` zich bij jullie?
>
> Zoals je zou verwachten:
>
> root@sysyphus:~# fail2ban-client set ssh banip 10.100.10.100
> 10.100.10.100
>
> root@sysyphus:~# fail2ban-client status ssh
> Status for the jail: ssh
> |- filter
> | |- File list: /var/log/auth.log
> | |- Currently failed: 0
> | `- Total failed: 2345
> `- action
> |- Currently banned: 1
> | `- IP list: 10.100.10.100
> `- Total banned: 283
>
> root@sysyphus:~# iptables -L -n |grep -B2 10.100
> Chain fail2ban-ssh (1 references)
> target prot opt source destination
> REJECT all -- 10.100.10.100 0.0.0.0/0
> reject-with icmp-port-unreachable
>
> root@sysyphus:~# aptitude versions '~ifail2ban'
> Package fail2ban:
> i 0.8.13-1 testing 500
>
Ah,
# aptitude versions ~ifail2ban
Package fail2ban:
i 0.8.6-3wheezy2 stable 500
En inderdaad op een nieuwe machine
gaat de handmatige fail2ban geheel naar verwachting!
Dank.
Groeten
Geert Stappers
--
Leven en laten leven
Reply to: