On 30-03-18 09:54, Tom Hendrikx wrote: > > > On 29-03-18 20:54, Ben Coleman wrote: >> On 3/29/2018 5:35 AM, Jaydeep Zala wrote: >>> Hello guys, >>> How can I whitelist my IP's dynamically, means from SQL query..? >>> anyone have an idea about this? >> >> I think you'd have to generate a local .conf file (perhaps in jail.d) >> that contains an ignore-id setting with all of the IP's you'd like to >> whitelist, then have fail2ban reload. I've taken a similar approach to >> configuring the addresses that nagios-nrpe will accept queries from (in >> my case, the nagios server was sitting behind a dynamic home connection). >> > > The problemen here might be that every time your whitelist changes, you > have to reload fail2ban to get the new entries into fail2ban. >
Replying to myself here, but you could probably work around this by creating an ignorecommand that queries your database directly. I couldn't find a lot of documentation on that feature, but there's one implementation available at https://github.com/fail2ban/fail2ban/tree/0.11/config/filter.d/ignorecommands Kind regards, Tom ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Fail2ban-users mailing list Fail2ban-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fail2ban-users
