[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: handmatige ban IP m.b.v. fail2ban-client

On Sat, Sep 27, 2014 at 08:36:08AM +0200, Rutger van Sleen wrote:
> On 27-09-2014 08:23, Geert Stappers wrote:
> >Hoi,
> >
> >Hoe gedraagt `fail2ban-client set <JAIL> banip <IP>` zich bij jullie?
> 
> Zoals je zou verwachten:
> 
> root@sysyphus:~# fail2ban-client set ssh banip 10.100.10.100
> 10.100.10.100
> 
> root@sysyphus:~# fail2ban-client status ssh
> Status for the jail: ssh
> |- filter
> |  |- File list:        /var/log/auth.log
> |  |- Currently failed: 0
> |  `- Total failed:     2345
> `- action
>    |- Currently banned: 1
>    |  `- IP list:       10.100.10.100
>    `- Total banned:     283
> 
> root@sysyphus:~# iptables -L -n |grep -B2 10.100
> Chain fail2ban-ssh (1 references)
> target     prot opt source               destination
> REJECT     all  --  10.100.10.100        0.0.0.0/0
> reject-with icmp-port-unreachable
> 
> root@sysyphus:~# aptitude versions '~ifail2ban'
> Package fail2ban:
> i  0.8.13-1                  testing  500
> 

Ah,

# aptitude versions ~ifail2ban
Package fail2ban:                                   
i   0.8.6-3wheezy2             stable   500 


En inderdaad op een nieuwe machine
gaat de handmatige fail2ban geheel naar verwachting!


Dank.

Groeten
Geert Stappers
-- 
Leven en laten leven
Reply to: