Problemas with fail2ban

To: debian-user@lists.debian.org
Subject: Problemas with fail2ban
From: Martin Marques <martin@bugs.unl.edu.ar>
Date: Sun, 07 Oct 2007 11:05:47 -0300
Message-id: <[🔎] 4708E7BB.80205@bugs.unl.edu.ar>

I started seeing that fail2ban is not working properly on my debianserver, while working in other places where I'm using other distros.

I started searching and found this in the logs after putting indebugging and restarting fail2ban:

2007-10-07 10:03:12,744 fail2ban.actions.action: DEBUG iptables -Nfail2ban-ssh

iptables -A fail2ban-ssh -j RETURN
iptables -I INPUT -p tcp --dport ssh,sftp -j fail2ban-ssh

2007-10-07 10:03:12,748 fail2ban.filter.datedetector: DEBUG Sorting thetemplate list2007-10-07 10:03:12,752 fail2ban.actions.action: ERROR iptables -Nfail2ban-ssh

iptables -A fail2ban-ssh -j RETURN
iptables -I INPUT -p tcp --dport ssh,sftp -j fail2ban-ssh returned 200


What does the error mean? The fail2ban-ssh chain exists in iptables:

Chain fail2ban-ssh (0 references)
target     prot opt source               destination
RETURN     all  --  anywhere             anywhere

But fail2ban doesn't block when I get up to 7 fails from the same IP,while I have it configured to ban at 3.


Any ideas?

Reply to:

Prev by Date: postgres install fails on sid
Next by Date: lvreduce - no such file or directory?
Previous by thread: Re: postgres install fails on sid
Next by thread: lvreduce - no such file or directory?
Index(es):
- Date
- Thread