2013-11-12 21:05:08 +00:00
|
|
|
.\" DO NOT MODIFY THIS FILE! It was generated by help2man 1.40.4.
|
|
|
|
.TH FAIL2BAN-CLIENT "1" "November 2013" "fail2ban-client v0.8.11" "User Commands"
|
2006-09-12 21:33:00 +00:00
|
|
|
.SH NAME
|
|
|
|
fail2ban-client \- configure and control the server
|
2008-03-05 23:19:45 +00:00
|
|
|
.SH SYNOPSIS
|
|
|
|
.B fail2ban-client
|
|
|
|
[\fIOPTIONS\fR] \fI<COMMAND>\fR
|
2006-09-12 21:33:00 +00:00
|
|
|
.SH DESCRIPTION
|
2013-11-12 21:05:08 +00:00
|
|
|
Fail2Ban v0.8.11 reads log file that contains password failure report
|
2006-09-12 21:33:00 +00:00
|
|
|
and bans the corresponding IP addresses using firewall rules.
|
|
|
|
.SH OPTIONS
|
|
|
|
.TP
|
|
|
|
\fB\-c\fR <DIR>
|
|
|
|
configuration directory
|
|
|
|
.TP
|
2006-10-04 22:17:53 +00:00
|
|
|
\fB\-s\fR <FILE>
|
|
|
|
socket path
|
|
|
|
.TP
|
2013-03-07 18:03:49 +00:00
|
|
|
\fB\-p\fR <FILE>
|
|
|
|
pidfile path
|
|
|
|
.TP
|
2006-09-12 21:33:00 +00:00
|
|
|
\fB\-d\fR
|
|
|
|
dump configuration. For debugging
|
|
|
|
.TP
|
|
|
|
\fB\-i\fR
|
|
|
|
interactive mode
|
|
|
|
.TP
|
|
|
|
\fB\-v\fR
|
|
|
|
increase verbosity
|
|
|
|
.TP
|
|
|
|
\fB\-q\fR
|
|
|
|
decrease verbosity
|
|
|
|
.TP
|
|
|
|
\fB\-x\fR
|
2007-01-04 23:35:57 +00:00
|
|
|
force execution of the server (remove socket file)
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
|
|
|
\fB\-h\fR, \fB\-\-help\fR
|
|
|
|
display this help message
|
|
|
|
.TP
|
|
|
|
\fB\-V\fR, \fB\-\-version\fR
|
|
|
|
print the version
|
|
|
|
.SH COMMAND
|
2006-12-23 16:31:00 +00:00
|
|
|
.IP
|
2007-01-29 20:35:16 +00:00
|
|
|
BASIC
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBstart\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
starts the server and the jails
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBreload\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
reloads the configuration
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2008-03-05 23:19:45 +00:00
|
|
|
\fBreload <JAIL>\fR
|
|
|
|
reloads the jail <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBstop\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
stops all jails and terminate the
|
|
|
|
server
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBstatus\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the current status of the
|
|
|
|
server
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBping\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
tests if the server is alive
|
2013-05-13 15:00:44 +00:00
|
|
|
.TP
|
|
|
|
\fBhelp\fR
|
|
|
|
return this output
|
2006-12-23 16:31:00 +00:00
|
|
|
.IP
|
2007-01-29 20:35:16 +00:00
|
|
|
LOGGING
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset loglevel <LEVEL>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets logging level to <LEVEL>. 0
|
|
|
|
is minimal, 4 is debug
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget loglevel\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the logging level
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset logtarget <TARGET>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets logging target to <TARGET>.
|
|
|
|
Can be STDOUT, STDERR, SYSLOG or a
|
|
|
|
file
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget logtarget\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets logging target
|
2006-12-23 16:31:00 +00:00
|
|
|
.IP
|
2007-01-29 20:35:16 +00:00
|
|
|
JAIL CONTROL
|
2006-11-16 22:30:48 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBadd <JAIL> <BACKEND>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
creates <JAIL> using <BACKEND>
|
|
|
|
.TP
|
2006-12-23 16:31:00 +00:00
|
|
|
\fBstart <JAIL>\fR
|
|
|
|
starts the jail <JAIL>
|
|
|
|
.TP
|
|
|
|
\fBstop <JAIL>\fR
|
|
|
|
stops the jail <JAIL>. The jail is
|
|
|
|
removed
|
|
|
|
.TP
|
|
|
|
\fBstatus <JAIL>\fR
|
|
|
|
gets the current status of <JAIL>
|
|
|
|
.IP
|
2007-01-29 20:35:16 +00:00
|
|
|
JAIL CONFIGURATION
|
2006-12-23 16:31:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> idle on|off\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets the idle state of <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> addignoreip <IP>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
adds <IP> to the ignore list of
|
|
|
|
<JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> delignoreip <IP>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
removes <IP> from the ignore list
|
|
|
|
of <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> addlogpath <FILE>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
adds <FILE> to the monitoring list
|
|
|
|
of <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> dellogpath <FILE>\fR
|
2013-03-07 18:03:49 +00:00
|
|
|
removes <FILE> from the monitoring
|
2006-11-16 22:30:48 +00:00
|
|
|
list of <JAIL>
|
|
|
|
.TP
|
2006-12-23 16:31:00 +00:00
|
|
|
\fBset <JAIL> addfailregex <REGEX>\fR
|
|
|
|
adds the regular expression
|
2006-11-16 22:30:48 +00:00
|
|
|
<REGEX> which must match failures
|
|
|
|
for <JAIL>
|
|
|
|
.TP
|
2006-12-23 16:31:00 +00:00
|
|
|
\fBset <JAIL> delfailregex <INDEX>\fR
|
|
|
|
removes the regular expression at
|
|
|
|
<INDEX> for failregex
|
|
|
|
.TP
|
|
|
|
\fBset <JAIL> addignoreregex <REGEX>\fR
|
|
|
|
adds the regular expression
|
2006-11-16 22:30:48 +00:00
|
|
|
<REGEX> which should match pattern
|
|
|
|
to exclude for <JAIL>
|
|
|
|
.TP
|
2006-12-23 16:31:00 +00:00
|
|
|
\fBset <JAIL> delignoreregex <INDEX>\fR
|
|
|
|
removes the regular expression at
|
|
|
|
<INDEX> for ignoreregex
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> findtime <TIME>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets the number of seconds <TIME>
|
|
|
|
for which the filter will look
|
|
|
|
back for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> bantime <TIME>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets the number of seconds <TIME>
|
|
|
|
a host will be banned for <JAIL>
|
|
|
|
.TP
|
2013-03-07 18:03:49 +00:00
|
|
|
\fBset <JAIL> usedns <VALUE>\fR
|
|
|
|
sets the usedns mode for <JAIL>
|
|
|
|
.TP
|
|
|
|
\fBset <JAIL> banip <IP>\fR
|
|
|
|
manually Ban <IP> for <JAIL>
|
|
|
|
.TP
|
|
|
|
\fBset <JAIL> unbanip <IP>\fR
|
|
|
|
manually Unban <IP> in <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> maxretry <RETRY>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets the number of failures
|
|
|
|
<RETRY> before banning the host
|
|
|
|
for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> addaction <ACT>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
adds a new action named <NAME> for
|
|
|
|
<JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> delaction <ACT>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
removes the action <NAME> from
|
|
|
|
<JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> setcinfo <ACT> <KEY> <VALUE>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets <VALUE> for <KEY> of the
|
|
|
|
action <NAME> for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> delcinfo <ACT> <KEY>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
removes <KEY> for the action
|
|
|
|
<NAME> for <JAIL>
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> actionstart <ACT> <CMD>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets the start command <CMD> of
|
|
|
|
the action <ACT> for <JAIL>
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> actionstop <ACT> <CMD>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets the stop command <CMD> of the
|
|
|
|
action <ACT> for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> actioncheck <ACT> <CMD>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets the check command <CMD> of
|
|
|
|
the action <ACT> for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> actionban <ACT> <CMD>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets the ban command <CMD> of the
|
|
|
|
action <ACT> for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBset <JAIL> actionunban <ACT> <CMD>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
sets the unban command <CMD> of
|
|
|
|
the action <ACT> for <JAIL>
|
2006-12-23 16:31:00 +00:00
|
|
|
.IP
|
2007-01-29 20:35:16 +00:00
|
|
|
JAIL INFORMATION
|
2006-09-12 21:33:00 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> logpath\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the list of the monitored
|
|
|
|
files for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> ignoreip\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the list of ignored IP
|
|
|
|
addresses for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> failregex\fR
|
2006-12-23 16:31:00 +00:00
|
|
|
gets the list of regular
|
|
|
|
expressions which matches the
|
|
|
|
failures for <JAIL>
|
2006-11-16 22:30:48 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> ignoreregex\fR
|
2006-12-23 16:31:00 +00:00
|
|
|
gets the list of regular
|
|
|
|
expressions which matches patterns
|
|
|
|
to ignore for <JAIL>
|
2006-11-16 22:30:48 +00:00
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> findtime\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the time for which the filter
|
|
|
|
will look back for failures for
|
|
|
|
<JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> bantime\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the time a host is banned for
|
|
|
|
<JAIL>
|
|
|
|
.TP
|
2013-03-07 18:03:49 +00:00
|
|
|
\fBget <JAIL> usedns\fR
|
|
|
|
gets the usedns setting for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> maxretry\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the number of failures
|
|
|
|
allowed for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> addaction\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the last action which has
|
|
|
|
been added for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> actionstart <ACT>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the start command for the
|
|
|
|
action <ACT> for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> actionstop <ACT>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the stop command for the
|
|
|
|
action <ACT> for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> actioncheck <ACT>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the check command for the
|
|
|
|
action <ACT> for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> actionban <ACT>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the ban command for the
|
|
|
|
action <ACT> for <JAIL>
|
|
|
|
.TP
|
2006-11-18 15:15:58 +00:00
|
|
|
\fBget <JAIL> actionunban <ACT>\fR
|
2006-11-16 22:30:48 +00:00
|
|
|
gets the unban command for the
|
|
|
|
action <ACT> for <JAIL>
|
2013-03-07 18:03:49 +00:00
|
|
|
.TP
|
|
|
|
\fBget <JAIL> cinfo <ACT> <KEY>\fR
|
|
|
|
gets the value for <KEY> for the
|
|
|
|
action <ACT> for <JAIL>
|
2006-09-12 21:33:00 +00:00
|
|
|
.SH FILES
|
|
|
|
\fI/etc/fail2ban/*\fR
|
|
|
|
.SH AUTHOR
|
2008-03-05 23:19:45 +00:00
|
|
|
Written by Cyril Jaquier <cyril.jaquier@fail2ban.org>.
|
2006-09-12 21:33:00 +00:00
|
|
|
Many contributions by Yaroslav O. Halchenko <debian@onerussian.com>.
|
|
|
|
.SH "REPORTING BUGS"
|
2013-03-07 18:03:49 +00:00
|
|
|
Report bugs to https://github.com/fail2ban/fail2ban/issues
|
2006-09-12 21:33:00 +00:00
|
|
|
.SH COPYRIGHT
|
2013-03-07 18:03:49 +00:00
|
|
|
Copyright \(co 2004\-2008 Cyril Jaquier, 2008\- Fail2Ban Contributors
|
2006-09-12 21:33:00 +00:00
|
|
|
.br
|
|
|
|
Copyright of modifications held by their respective authors.
|
|
|
|
Licensed under the GNU General Public License v2 (GPL).
|
|
|
|
.SH "SEE ALSO"
|
|
|
|
.br
|
|
|
|
fail2ban-server(1)
|
2013-10-30 23:27:30 +00:00
|
|
|
jail.conf(5)
|