I see whenever I make changes to jail.local or filters in filters.d folder, after fail2ban-client reload , fail2ban will unban all IPs in firewall and then again it will ban all IPs why its so, say example I have around 3000 IPs which are blocked, it takes long time to unban and ban IP.
Also unfortunately mod_evasive is not working consistently on my centos 7. Is there any way to detect and block on DDoS attack in fail2ban ? If anyone having working filters for DDoS please share. How to solve this problem, please someone guide me.
_______________________________________________ Fail2ban-users mailing list Fail2ban-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fail2ban-users
