[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: fail2ban for apache2

On Sun, 2019-11-10 at 19:37 +0000, Brian wrote:
> On Sun 10 Nov 2019 at 10:26:17 -0800, Kushal Kumaran wrote:
> [...]
> > One thing you could try is to examine the iptables rule counters
> > daily/weekly.  If the counters do not increase during some
> > interval,
> > then the rule is no longer useful to you, so you could delete
> > it.  This
> > should be fairly straightforward to automate, but I don't know if
> > someone has already built this tooling.
> 
> I hardly use iptables, so this is the first I have heard about rule
> counters. I'll work something out to accomodate it.

And you can zero all the counters with "/sbin/iptables -Z" (or zero
individual rule couters if you want). 

-- 
Tixy
Reply to: