Fail2Ban Question: Can I do this without restarting the service?

To: Debian User List <debian-user@lists.debian.org>
Subject: Fail2Ban Question: Can I do this without restarting the service?
From: cyaiplexys <cyaiplexys@sitesplace.net>
Date: Wed, 15 Aug 2018 21:29:58 -0400
Message-id: <[🔎] 4cddbaa0-29b0-a765-a765-a08220a08301@sitesplace.net>
Reply-to: cyaiplexys@sitesplace.net

I have a list of IP addresses I want to ban and I put them in/etc/fail2ban/action.d/iptables-multiport.conf as so:

cat /etc/fail2ban/ip.blacklist.perm | while read IP; do iptables -Ifail2ban-<name> 1 -s $IP -j DROP; done


(that was supposed to be all on one line, of course)

So, I have read that when you do things this way, you MUST restartfail2ban (sudo service fail2ban restart).

Is there a better way to do this? I have a cron job that gathers IPaddresses that get more than 1,000 hits from the apache log file andthat gets put in the ip.blacklist.perm file.

I know *nothing* about fail2ban. I just read of this technique viaGoogle. But when using Google, I can't find another way to do this thatdoesn't require a restart of the service.


Any ideas on other ways to do this?

Reply to:

Follow-Ups:
- Re: Fail2Ban Question: Can I do this without restarting the service?
  - From: john doe <johndoe65534@mail.com>
- Re: Fail2Ban Question: Can I do this without restarting the service?
  - From: Dave Sherohman <dave@sherohman.org>

Prev by Date: Re: does btrfs have a future? (was: feature)
Next by Date: Re: USB2 or 3 WiFi dual band adapters
Previous by thread: Re: How to file bug for installation images that don't boot
Next by thread: Re: Fail2Ban Question: Can I do this without restarting the service?
Index(es):
- Date
- Thread