- Added start and end command options

git-svn-id: https://fail2ban.svn.sourceforge.net/svnroot/fail2ban/branches/FAIL2BAN-0_5@116 a942ae1a-1317-0410-a47c-b1dcaea8d605
0.5
Cyril Jaquier 2005-07-07 16:50:20 +00:00
parent 685f4aad99
commit 992a3f7d31
1 changed files with 47 additions and 21 deletions

View File

@ -60,11 +60,17 @@ bantime = 600
#
ignoreip =
# Option: interface
# Notes.: interface name on which the IP will be banned.
# Values: INT Default: eth0
#
interface = eth0
# Option: cmdstart
# Notes.: command executed once at the start of Fail2Ban
# Values: CMD
# Default
cmdstart =
# Option: cmdend
# Notes.: command executed once at the end of Fail2Ban
# Values: CMD
# Default
cmdend =
# Option: polltime
# Notes.: number of seconds fail2ban sleeps between iterations.
@ -87,25 +93,35 @@ enabled = false
# Notes.: logfile to monitor.
# Values: FILE Default: /var/log/httpd/access_log
#
logfile = /home/cyril/workspace/fail2ban/log-test/apache
logfile = /home/cyril/workspace/fail2ban-unstable/log-test/apache
# Option: fwbanrule
# Option: fwstart
# Notes.: command executed once at the start of Fail2Ban
# Values: CMD
# Default
fwstart =
# Option: fwend
# Notes.: command executed once at the end of Fail2Ban
# Values: CMD
# Default
fwend =
# Option: fwban
# Notes.: command executed when banning an IP. Take care that the
# command is executed with Fail2Ban user rights.
# <if> interface name
# <ip> IP address
# Values: CMD
# Default iptables -I INPUT 1 -i <if> -s <ip> -j DROP
fwbanrule = iptables -I INPUT 1 -i <if> -s <ip> -j DROP
# Default iptables -I INPUT 1 -i eth0 -s <ip> -j DROP
fwban = iptables -I INPUT 1 -i eth0 -s <ip> -j DROP
# Option: fwunbanrule
# Option: fwunban
# Notes.: command executed when unbanning an IP. Take care that the
# command is executed with Fail2Ban user rights.
# <if> interface name
# <ip> IP address
# Values: CMD
# Default iptables -D INPUT -i <if> -s <ip> -j DROP
fwunbanrule = iptables -D INPUT -i <if> -s <ip> -j DROP
# Default iptables -D INPUT -i eth0 -s <ip> -j DROP
fwunban = iptables -D INPUT -i eth0 -s <ip> -j DROP
# Option: timeregex
# Notes.: regex to match timestamp in Apache logfile.
@ -138,25 +154,35 @@ enabled = true
# Notes.: logfile to monitor.
# Values: FILE Default: /var/log/secure
#
logfile = /home/cyril/workspace/fail2ban/log-test/test
logfile = /home/cyril/workspace/fail2ban-unstable/log-test/test
# Option: fwstart
# Notes.: command executed once at the start of Fail2Ban
# Values: CMD
# Default
fwstart =
# Option: fwend
# Notes.: command executed once at the end of Fail2Ban
# Values: CMD
# Default
fwend =
# Option: fwbanrule
# Notes.: command executed when banning an IP. Take care that the
# command is executed with Fail2Ban user rights.
# <if> interface name
# <ip> IP address
# Values: CMD
# Default iptables -I INPUT 1 -i <if> -s <ip> -j DROP
fwbanrule = iptables -I INPUT 1 -i <if> -s <ip> -j DROP
# Default iptables -I INPUT 1 -i eth0 -s <ip> -j DROP
fwban = iptables -I INPUT 1 -i eth0 -s <ip> -j DROP
# Option: fwunbanrule
# Notes.: command executed when unbanning an IP. Take care that the
# command is executed with Fail2Ban user rights.
# <if> interface name
# <ip> IP address
# Values: CMD
# Default iptables -D INPUT -i <if> -s <ip> -j DROP
fwunbanrule = iptables -D INPUT -i <if> -s <ip> -j DROP
# Default iptables -D INPUT -i eth0 -s <ip> -j DROP
fwunban = iptables -D INPUT -i eth0 -s <ip> -j DROP
# Option: timeregex
# Notes.: regex to match timestamp in SSH logfile.