On Sun, 2019-08-25 at 10:44 -0700, Kenneth Porter wrote: > --On Sunday, August 25, 2019 9:36 AM +0000 "STR ." < > > fail2ban flushes these rules whenever there is a new ban and I > > would > > would > > like it to co-exist with my custom rules, how would I achieve this? > > Add an iptables rule in your custom rules to create an empty subchain > of > INPUT for fail2ban to use named fail2ban_root. fail2ban should only > touch > this chain and its subchains. > > Create action.d/iptables-common.local and add: > > [Init] > chain = fail2ban_root >
I created the subchain named fail2ban_root and created iptables- common.local as suggested with the chain name. However, fail2ban still creates and uses the old chain 'f2b-<name>' from /etc/fail2ban/action.d/iptables.conf It is adding IPs to ban to the old chain 'f2b-sshd', I thought it would use the new chain 'fail2ban_root'? What am I missing here? Thank, S _______________________________________________ Fail2ban-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fail2ban-users
