Mercurial > repos > other > Puppet
view common/fail2ban/jail.local @ 63:e5c999fa15e2 puppet-3.6
Fix syntax for port range in Fail2Ban rules
| author | IBBoard <dev@ibboard.co.uk> |
|---|---|
| date | Sun, 13 Sep 2015 19:48:35 +0100 |
| parents | ce8eaaca6a34 |
| children | 3bb824dabaae |
line wrap: on
line source
# Disable ssh-iptables because some versions auto-enable it # and we want to use our own version (which may use non-iptables) [ssh-iptables] enabled = false [ssh-firewall-ban] enabled = true filter = sshd action = firewall-ban[name=SSH,port=22] logpath = /var/log/secure maxretry = 5 bantime = 604800 [apache-badbots] enabled = true filter = apache-badbots action = firewall-ban[name=ApacheBadBots,port="80,443"] logpath = /var/log/apache/access_*.log findtime = 604800 bantime = 604800 [apache-instaban] enabled = true maxretry = 1 filter = ibb-apache-exploits-instaban action = firewall-ban[name=ApacheInstaban,port="80,443"] logpath = /var/log/apache/access_*.log findtime = 604800 bantime = 604800 [apache-auth] enabled = true maxretry = 5 filter = apache-auth action = firewall-ban[name=ApacheAuth,port="80,443"] logpath = /var/log/apache/error_*.log findtime = 86400 bantime = 604800 [repeat-offenders] enabled = true maxretry = 2 filter = ibb-repeat-offender action = firewall-ban[name=RepeatOffenders,port="1:65535"] logpath = /var/log/fail2ban.log findtime = 2592000 bantime = 2592000 [spam-email] enabled = true maxretry = 1 filter = ibb-postfix-spammers action = firewall-ban[name=SpamEmail,port="465,25"] logpath = /var/log/maillog findtime = 604800 bantime = 604800 [mail-abuse] enabled = true maxretry = 1 filter = ibb-postfix-malicious action = firewall-ban[name=MailAbuse,port="465,25"] logpath = /var/log/maillog findtime = 604800 bantime = 604800 [mail-rejected] enabled = true maxretry = 10 filter = ibb-postfix action = firewall-ban[name=MailRejected,port="465,25"] logpath = /var/log/maillog findtime = 604800 bantime = 604800 [sasl] enabled = true maxretry = 10 filter = postfix-sasl action = firewall-ban[name=SASLFailures,port="465,25"] logpath = /var/log/maillog findtime = 604800 bantime = 604800 [shellshock] enabled = true maxretry = 1 filter = ibb-apache-shellshock action = firewall-ban[name=Shellshock,port="80,443"] logpath = /var/log/apache/access_*.log findtime = 604800 bantime = 604800