I've just noticed that the sshd jail is not using the bantime set in a
configlet in /etc/fail2ban/jail.d:
[sshd]
enabled = true
bantimeĀ = 86400
action = iptables-ipset-proto6-allports[name=sshd]
[root@dynamicvpn ~]# ipset list f2b-sshd -terse
Name: f2b-sshd
Type: hash:ip
Revision: 4
Header: family inet hashsize 1024 maxelem 65536 timeout 600
Size in memory: 13368
References: 1
Number of entries: 144
I can see there is a a timeout in iptables-ipset-proto6-allports.conf
but changing this, e.g, with .local file, changes it for all jails. Is
it possible to set the timeout for this action on a per-jail basis?
I'm using f2b 0.10.5.
_______________________________________________
Fail2ban-users mailing list
Fail2ban-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
