Hello, I installed Fail2Ban on CentOS and created below ".conf" files in "jail.d" directory with below content:
# cat mariadb.conf [mysqld-auth] enabled = true filter = mysqld-auth port = 3306 maxretry = 3 bantime = 600 logpath = /var/log/mariadb/mariadb.log ************************************ # cat sshd.conf [sshd] enabled = true port = ssh action = firewallcmd-ipset logpath = %(sshd_log)s maxretry = 5 bantime = 86400 ************************************ # cat apache.conf [apache-auth] enabled = true port = http,https logpath = %(apache_error_log)s [apache-badbots] enabled = true port = http,https logpath = %(apache_access_log)s bantime = 48h maxretry = 1 [apache-noscript] enabled = true port = http,https logpath = %(apache_error_log)s ************************************ # cat phpmyadmin.conf [apache-phpmyadmin] enabled = true filter = apache-phpmyadmin port = http,https logpath = %(apache_error_log)s ************************************ # cat vsftpd.conf [vsftpd] enabled = true action = firewallcmd-ipset port = ftp,ftp-data,ftps,ftps-data logpath = %(vsftpd_log)s maxretry = 5 bantime = 86400 And "fail2ban-client status" tell me: # fail2ban-client status Status |- Number of jail: 7 `- Jail list: apache-auth, apache-badbots, apache-noscript, apache-phpmyadmin, mysqld-auth, sshd, vsftpd 1- Is my configuration OK? 2- How can I sure Fail2Ban working correctly? Thank you. _______________________________________________ Fail2ban-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fail2ban-users
