added new jail (and filter) Monitorix

5 years ago · ede2009708
2 changed files with 32 additions and 0 deletions
--- a/config/filter.d/monitorix.conf
+++ b/config/filter.d/monitorix.conf
@ -0,0 +1,27 @@
+# Fail2Ban filter for Monitorix (HTTP built-in server)
+#
+
+[INCLUDES]
+
+before = common.conf
+
+[Definition]
+
+_daemon = monitorix-httpd
+
+# Option:  failregex
+# Notes.:  regex to match the password failures messages in the logfile. The
+#          host must be matched by a group named "host". The tag "<HOST>" can
+#          be used for standard IP/hostname matching and is only an alias for
+#          (?:::f{4,6}:)?(?P<host>\S+)
+# Values:  TEXT
+#
+failregex = NOTEXIST - \[<HOST>\] .*
+            AUTHERR - \[<HOST>\] .*
+            NOTALLOWED - \[<HOST>\] .*
+
+# Option:  ignoreregex
+# Notes.:  regex to ignore. If this regex matches, the line is ignored.
+# Values:  TEXT
+#
+ignoreregex =
--- a/config/jail.conf
+++ b/config/jail.conf
@ -951,3 +951,8 @@ logpath = %(apache_error_log)s
 # see `filter.d/traefik-auth.conf` for details and service example.
 port    = http,https
 logpath = /var/log/traefik/access.log
+
+
+[monitorix]
+port	= 8080
+logpath = /var/log/monitorix-httpd