github
/
fail2ban
mirror of https://github.com/fail2ban/fail2ban
1
0
Fork 0
Code Issues Releases Wiki Activity

use iptables-allports for recidive

Browse Source
pull/847/head
Yaroslav Halchenko 10 years ago
parent 967485c2d0
commit 2a3790f8e8
2 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File

3
ChangeLog
Unescape View File

@ -14,6 +14,9 @@ ver. 0.9.2 (2014/XX/XXX) - wanna-be-released
* $ typo in jail.conf. Thanks Skibbi. Debian bug #767255 * $ typo in jail.conf. Thanks Skibbi. Debian bug #767255
* grep'ing for IP in *mail-whois-lines.conf should now match also * grep'ing for IP in *mail-whois-lines.conf should now match also
at the begginning and EOL. Thanks Dean Lee at the begginning and EOL. Thanks Dean Lee
* recidive uses iptables-allports banaction by default now.
Avoids problems with iptables versions not understanding 'all' for
protocols and ports
- New Features: - New Features:

3
config/jail.conf
Unescape View File

@ -655,8 +655,7 @@ maxretry = 5
[recidive] [recidive]
logpath = /var/log/fail2ban.log logpath = /var/log/fail2ban.log
port = all banaction = iptables-allports
protocol = all
bantime = 604800 ; 1 week bantime = 604800 ; 1 week
findtime = 86400 ; 1 day findtime = 86400 ; 1 day
maxretry = 5 maxretry = 5

Write Preview
Loading…
Cancel
Save