使用 bridge-util 的 fail2ban

Question

新年快乐：）

fail2ban 可以与自定义命令一起使用。您需要：

cd /etc/fail2ban

cp jail.conf jail.local

在 jail.local 中：

[ssh-host1]
enabled = true
port=ssh
filter=sshd
logpath=/path/to/host1/logs/auth.log
maxretry=6
banaction=bridge-utils

创建 action.d/bridge-utils.local：

[Definition]
# executed once at the start of fail2ban
actionstart = brctl ...
# executed once at the end of fail2ban
actionstop = brctl ...
# executed once before each actionban command
actioncheck = ...
# ban action
actionban = brctl ...
            brctl ...
# unban action
actionunban = brctl ...
              brctl ...

[Init]
# some default variables here

重新启动 fail2ban 并测试其是否正常工作。

Answer 1

新年快乐：）

fail2ban 可以与自定义命令一起使用。您需要：

cd /etc/fail2ban

cp jail.conf jail.local

在 jail.local 中：

[ssh-host1]
enabled = true
port=ssh
filter=sshd
logpath=/path/to/host1/logs/auth.log
maxretry=6
banaction=bridge-utils

创建 action.d/bridge-utils.local：

[Definition]
# executed once at the start of fail2ban
actionstart = brctl ...
# executed once at the end of fail2ban
actionstop = brctl ...
# executed once before each actionban command
actioncheck = ...
# ban action
actionban = brctl ...
            brctl ...
# unban action
actionunban = brctl ...
              brctl ...

[Init]
# some default variables here

重新启动 fail2ban 并测试其是否正常工作。

使用 bridge-util 的 fail2ban

答案1

相关内容