Re: Fail2ban überwachung fail2ban logfile - wer hat Config beispiel?
Hallo Lars,
liebe Grüße ins schöne Graz!
> Ich hatte vor paar Jahren mal einen Link gehabt zu einer 3-4 stufigen
> fail2ban logfile Überwachung mittels fail2ban:
Ich habe jail.d/f2b-loop-jails.local mit
***
[f2b-loop2]
enabled = false
filter = f2b-loop
bantime = 86400 ;1 day
findtime = 604800 ;1 week
logpath = /var/log/fail2ban.log
maxretry = 2
[f2b-loop3]
enabled = false
filter = f2b-loop
bantime = 604800 ;1 week
findtime = 2592000 ;1 month
logpath = /var/log/fail2ban.log
maxretry = 3
[f2b-loop4]
enabled = false
filter = f2b-loop
bantime = 2592000 ;1 month
findtime = 15552000 ;6 months
logpath = /var/log/fail2ban.log
maxretry = 6
[f2b-loop5]
enabled = false
filter = f2b-loop
bantime = 15552000 ;6 months
findtime = 31536000 ;1 year
logpath = /var/log/fail2ban.log
maxretry = 9
****
und filter.d/f2b-loop.local
****
# Fail2Ban configuration file for subsequent bans
#
[INCLUDES]
before = common.conf
[Definition]
failregex = \]\s+Ban\s+<HOST>
ignoreregex = \[f2b-loop.*\]\s+Ban\s+<HOST>
#
# Author: Walter Heitman Jr. http://blog.shanock.com
*****
Hoffe das hilft.
LG
Norbert
--
PREINING Norbert https://www.preining.info
Accelia Inc. + IFMGA ProGuide + TU Wien + JAIST + TeX Live + Debian Dev
GPG: 0x860CDC13 fp: F7D8 A928 26E3 16A1 9FA0 ACF0 6CAC A448 860C DC13
Reply to: