From 7b6ee64b9e2960506b5bfcc802ff2a92f938eb41 Mon Sep 17 00:00:00 2001 From: Daniel Black Date: Sun, 12 Jan 2014 21:43:11 +1100 Subject: [PATCH] DOC: add over pruned bits of jail.conf.5 --- man/jail.conf.5 | 24 ++++++++++++++++++++++++ 1 file changed, 24 insertions(+) diff --git a/man/jail.conf.5 b/man/jail.conf.5 index 30baa9eb..5101e3b8 100644 --- a/man/jail.conf.5 +++ b/man/jail.conf.5 @@ -162,6 +162,30 @@ regex (Python \fBreg\fRular \fBex\fRpression) to be added to the filter's failre .B ignoreregex regex which, if the log line matches, would cause Fail2Ban not consider that line. This line will be ignored even if it matches a failregex of the jail or any of its filters. +.SS Backends +Available options are listed below. +.TP +.B pyinotify +requires pyinotify (a file alteration monitor) to be installed. If pyinotify is not installed, Fail2ban will use auto. +.TP +.B gamin +requires Gamin (a file alteration monitor) to be installed. If Gamin is not installed, Fail2ban will use auto. +.TP +.B polling +uses a polling algorithm which does not require external libraries. +.TP +.B systemd +uses systemd python library to access the systemd journal. Specifying \fBlogpath\fR is not valid for this backend and instead utilises \fBjournalmatch\fR from the jails associated filter config. + +.SS Actions +Each jail can be configured with only a single filter, but may have multiple actions. By default, the name of a action is the action filename, and in the case of Python actions, the ".py" file extension is stripped. Where multiple of the same action are to be used, the \fBactname\fR option can be assigned to the action to avoid duplication e.g.: +.PP +.nf +[ssh-iptables-ipset] +enabled = true +action = smtp.py[dest=chris@example.com, actname=smtp-chris] + smtp.py[dest=sally@example.com, actname=smtp-sally] +.fi .SH "ACTION CONFIGURATION FILES (\fIaction.d/*.conf\fB)" Action files specify which commands are executed to ban and unban an IP address.