Show pageOld revisionsBacklinksExport to PDFBack to top This page is read only. You can view the source, but not change it. Ask your administrator if you think this is wrong. ====== Fail2Ban ====== ===== Configs ===== ==== SSH ==== <code> [DEFAULT] enabled = true ignoreip = 127.0.0.1/8 #Add any other local IPs here ignorecommand = backend = systemd mode = normal filter = %(__name__)s[mode=%(mode)s] findtime = 600 maxretry = 3 bantime = 600 bantime.increment = true bantime.factor = 1 bantime.formula = ban.Time * (1<<(ban.Count if ban.Count<20 else 20)) * banFactor banaction = route action = %(banaction)s[blocktype=blackhole] [sshd] # Mode: normal (default), ddos, extra or aggressive (combines all) # See "filter.d/sshd.conf" for details. mode = normal enabled = true port = ssh filter = sshd logpath = /var/log/auth.log </code> computers/fail2ban.txt Last modified: 2023/03/10 14:45by jon