2016-03-17 04:33:14 +00:00
|
|
|
# Fail2Ban configuration file
|
|
|
|
#
|
2020-11-26 12:47:25 +00:00
|
|
|
# Authors: Donald Yandt, Sergey G. Brester
|
2016-03-17 04:33:14 +00:00
|
|
|
#
|
|
|
|
# Because of the rich rule commands requires firewalld-0.3.1+
|
|
|
|
# This action uses firewalld rich-rules which gives you a cleaner iptables since it stores rules according to zones and not
|
|
|
|
# by chain. So for an example all deny rules will be listed under <zone>_deny and all log rules under <zone>_log.
|
|
|
|
#
|
|
|
|
# Also this action logs banned access attempts so you can filter that and increase ban time for offenders.
|
|
|
|
#
|
|
|
|
# If you use the --permanent rule you get a xml file in /etc/firewalld/zones/<zone>.xml that can be shared and parsed easliy
|
|
|
|
#
|
2020-11-26 12:47:25 +00:00
|
|
|
# This is an derivative of firewallcmd-rich-rules.conf, see there for details and other parameters.
|
2016-03-17 04:33:14 +00:00
|
|
|
|
2016-05-14 01:36:27 +00:00
|
|
|
[INCLUDES]
|
|
|
|
|
2020-11-26 12:47:25 +00:00
|
|
|
before = firewallcmd-rich-rules.conf
|
2016-05-14 01:36:27 +00:00
|
|
|
|
2016-03-17 04:33:14 +00:00
|
|
|
[Definition]
|
|
|
|
|
2020-11-26 12:47:25 +00:00
|
|
|
rich-suffix = log prefix='f2b-<name>' level='<level>' limit value='<rate>/m' <rich-blocktype>
|
2016-03-17 04:33:14 +00:00
|
|
|
|
|
|
|
[Init]
|
|
|
|
|
|
|
|
# log levels are "emerg", "alert", "crit", "error", "warning", "notice", "info" or "debug"
|
|
|
|
level = info
|
|
|
|
|
|
|
|
# log rate per minute
|
|
|
|
rate = 1
|