You didn't say whether or not your running selinux enforcing? I'm running a fully up to date version of CentOS which requires a considerable number of selinux patches to get fail2ban working smoothly in my particular configuration.
On Tue, 2014-10-21 at 19:43 +0000, Steven Jones wrote: > Correct, error between chair and keyboard I believe. > > > I found some Centos howtos which edited jail.conf directly and it ran > fine. I then cp'd to jail.local and #'d out the lines in jail.conf > and it still worked. Does this mean you found a solution? > > > :D > > > > regards > > Steven > > > > > ______________________________________________________________________ > From: Bill Shirley <[email protected]> > Sent: Wednesday, 22 October 2014 12:40 a.m. > To: [email protected] > Subject: Re: [Fail2ban-users] Configuring fail2ban on RHEL7 > > I don't think this is a systemd problem. In Fedora 19 fail2ban's > service file: > [Unit] > Description=Fail2ban Service > After=syslog.target network.target > > [Service] > Type=forking > ExecStart=/usr/bin/fail2ban-client -x start > ExecStop=/usr/bin/fail2ban-client stop > ExecReload=/usr/bin/fail2ban-client reload > PIDFile=/var/run/fail2ban/fail2ban.pid > Restart=always <=== they told it to restart on failure > > [Install] > WantedBy=multi-user.target > > I think you have a syntax error. What does 'fail2ban-client -d' > report? > > Bill > > > On 10/21/2014 4:20 AM, Charles Bradshaw wrote: > > > Looks a bit like a problem with systemd. > > > > You did a restart, therefore fail2ban was running previously. What is > > the status of f2b after your restart? > > [..]# fail2ban-client status > > > > You should be using systemctl not service to control services on a > > system running systemd. I presume you are running Fedora? Are you also > > running SELINUX? > > > > What does the fail2ban log say? > > > > On Tue, 2014-10-21 at 00:33 +0000, Steven Jones wrote: > > > Hi, > > > > > > > > > I am attempting to setup fail2ban to protect ssh. > > > > > > > > > So I copied jail.conf to jail.local and edited the file, however > > > fail2ban will now not run. > > > > > > > > > :( > > > > > > > > > ======== > > > > > > [root@vuwuniconnect01 fail2ban]# service fail2ban restart > > > Redirecting to /bin/systemctl restart fail2ban.service > > > Job for fail2ban.service failed. See 'systemctl status > > > fail2ban.service' and 'journalctl -xn' for details. > > > [root@vuwuniconnect01 fail2ban]# journalctl -xn > > > -- Logs begin at Mon 2014-10-20 13:46:33 NZDT, end at Tue 2014-10-21 > > > 13:22:18 NZDT. -- > > > Oct 21 13:22:18 vuwuniconnect01.ods.vuw.ac.nz fail2ban-client[5071]: ' > > > enabled = true\n' > > > Oct 21 13:22:18 vuwuniconnect01.ods.vuw.ac.nz systemd[1]: > > > fail2ban.service: control process exited, code=exited status=255 > > > Oct 21 13:22:18 vuwuniconnect01.ods.vuw.ac.nz systemd[1]: Failed to > > > start Fail2ban Service. > > > -- Subject: Unit fail2ban.service has failed > > > -- Defined-By: systemd > > > -- Support: > > > http://lists.freedesktop.org/mailman/listinfo/systemd-devel > > > -- > > > -- Unit fail2ban.service has failed. > > > -- > > > -- The result is failed. > > > Oct 21 13:22:18 vuwuniconnect01.ods.vuw.ac.nz systemd[1]: Unit > > > fail2ban.service entered failed state. > > > Oct 21 13:22:18 vuwuniconnect01.ods.vuw.ac.nz systemd[1]: > > > fail2ban.service holdoff time over, scheduling restart. > > > Oct 21 13:22:18 vuwuniconnect01.ods.vuw.ac.nz systemd[1]: Stopping > > > Fail2ban Service... > > > -- Subject: Unit fail2ban.service has begun shutting down > > > -- Defined-By: systemd > > > -- Support: > > > http://lists.freedesktop.org/mailman/listinfo/systemd-devel > > > -- > > > -- Unit fail2ban.service has begun shutting down. > > > Oct 21 13:22:18 vuwuniconnect01.ods.vuw.ac.nz systemd[1]: Starting > > > Fail2ban Service... > > > -- Subject: Unit fail2ban.service has begun with start-up > > > -- Defined-By: systemd > > > -- Support: > > > http://lists.freedesktop.org/mailman/listinfo/systemd-devel > > > ------------------------------------------------------------------------------ > > > Comprehensive Server Monitoring with Site24x7. > > > Monitor 10 servers for $9/Month. > > > Get alerted through email, SMS, voice calls or mobile push notifications. > > > Take corrective actions from your mobile device. > > > http://p.sf.net/sfu/Zoho > > > _______________________________________________ > > > Fail2ban-users mailing list > > > [email protected] > > > https://lists.sourceforge.net/lists/listinfo/fail2ban-users > > ------------------------------------------------------------------------------ Comprehensive Server Monitoring with Site24x7. Monitor 10 servers for $9/Month. Get alerted through email, SMS, voice calls or mobile push notifications. Take corrective actions from your mobile device. http://p.sf.net/sfu/Zoho _______________________________________________ Fail2ban-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fail2ban-users
