Bug#398739: attachment

Wed, 15 Nov 2006 04:10:54 -0800 

Oops. Now attached.

-- 
 .''`.   martin f. krafft <[EMAIL PROTECTED]>
: :'  :  proud Debian developer, author, administrator, and user
`. `'`   http://people.debian.org/~madduck - http://debiansystem.info
  `-  Debian - when you have better things to do than fixing systems

# Fail2Ban configuration file
#
# Author: martin f. krafft
# Copied from iptables.conf and modified by martin f. krafft
#   to be able to better fit with existing iptables rules.
#
# $Revision: 1 $
#

[Definition]

# Option:  fwstart
# Notes.:  command executed once at the start of Fail2Ban.
# Values:  CMD
#
actionstart = iptables -N fail2ban-<name>
              iptables -I <fwchain> -m state --state NEW -p <protocol> --dport 
<port> -j fail2ban-<name>
              <post_start_commands>

# Option:  fwend
# Notes.:  command executed once at the end of Fail2Ban
# Values:  CMD
#
actionstop = <pre_end_commands>
             iptables -D <fwchain> -m state --state NEW -p <protocol> --dport 
<port> -j fail2ban-<name>
             iptables -F fail2ban-<name>
             iptables -X fail2ban-<name>

# Option:  fwcheck
# Notes.:  command executed once before each fwban command
# Values:  CMD
#
actioncheck = iptables -L <fwchain> | grep -q fail2ban-<name>

# Option:  fwban
# Notes.:  command executed when banning an IP. Take care that the
#          command is executed with Fail2Ban user rights.
# Tags:    <ip>  IP address
#          <failures>  number of failures
#          <failtime>  unix timestamp of the last failure
#          <bantime>  unix timestamp of the ban time
# Values:  CMD
#
actionban = iptables -I fail2ban-<name> 1 -s <ip> -j DROP

# Option:  fwunban
# Notes.:  command executed when unbanning an IP. Take care that the
#          command is executed with Fail2Ban user rights.
# Tags:    <ip>  IP address
#          <bantime>  unix timestamp of the ban time
#          <unbantime>  unix timestamp of the unban time
# Values:  CMD
#
actionunban = iptables -D fail2ban-<name> -s <ip> -j DROP

[Init]

# Defaut name of the chain
#
name = default

# Option:  port
# Notes.:  specifies port to monitor
# Values:  [ NUM | STRING ]  Default:
#
port = ssh

# Option:  protocol
# Notes.:  internally used by config reader for interpolations.
# Values:  [ tcp | udp | icmp | all ] Default: tcp
#
protocol = tcp

# Option:  fwchain
# Notes.:  chain from which to jump into fail2ban chains
# Values:  TEXT  Default: INPUT
#
fwchain = INPUT

# Option:  post_start_commands
# Notes.:  additional commands to run after fail2ban started
# Values:  TEXT  Default: ''
#
post_start_commands =

# Option:  pre_end_commands
# Notes.:  additional commands to run before fail2ban ends
# Values:  TEXT  Default: ''
#
pre_end_commands =

Attachment: signature.asc
Description: Digital signature (GPG/PGP)

Reply via email to