$ fail2ban-regex /var/log/sqm.log /etc/fail2ban/filter.d/sqm.conf
I attach logfile and filter files for testing purposes. Mirac. Dne 10.9.2015 v 9:40 Iosif Fettich napsal(a):
Works for me on CentOS 6 with fail2ban 0.8.14-2.el6: $ fail2ban-regex 'Sep 9 09:20:57 [ERROR] N/A (intar.cz) from 192.168.1.176: Chyba: Spojení s IMAP serverem bylo přerušeno. Query: LOGOUT' '\[ERROR\].*from <HOST>: Chyba: Spojen. s IMAP serverem bylo p.eru.eno. Query: LOGOUT$' Running tests ============= Use failregex line : \[ERROR\].*from <HOST>: Chyba: Spojen. s IMAP ser... Use single line : Sep 9 09:20:57 [ERROR] N/A (intar.cz) from 192.168... Results ======= Failregex: 1 total |- #) [# of hits] regular expression | 1) [1] \[ERROR\].*from <HOST>: Chyba: Spojen. s IMAP serverem bylo p.eru.eno. Query: LOGOUT$ `- Ignoreregex: 0 total Date template hits: |- [# of hits] date format | [1] MONTH Day Hour:Minute:Second `- Lines: 1 lines, 0 ignored, 1 matched, 0 missed Best regards, Iosif Fettich
fail2ban-utf8.tgz
Description: Binary data
------------------------------------------------------------------------------ Monitor Your Dynamic Infrastructure at Any Scale With Datadog! Get real-time metrics from all of your servers, apps and tools in one place. SourceForge users - Click here to start your Free Trial of Datadog now! http://pubads.g.doubleclick.net/gampad/clk?id=241902991&iu=/4140
_______________________________________________ Fail2ban-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fail2ban-users
