On Fri, Aug 13, 2021 at 05:56:12PM +0100, Alain Williams wrote: > On Fri, Aug 13, 2021 at 09:47:05AM +0100, Nick Howitt wrote: > > > Then have a look at /etc/fail2ban/action.d/iptables.conf and override > > anything you want to change in a /etc/fail2ban/action.d/iptables.local. > > Great that worked, almost, the file that I needed to change was: > > /etc/fail2ban/action.d/iptables-multiport.conf
Oh, another change that I needed to do was to remove the actioncheck. This was checking that f2b was in the INPUT chain ... which is what I stopped it doing. So: actioncheck = <iptables> -n -L <chain> | grep -q 'f2b-<name>[ \t]' I replaced with: actioncheck = true -- Alain Williams Linux/GNU Consultant - Mail systems, Web sites, Networking, Programmer, IT Lecturer. +44 (0) 787 668 0256 https://www.phcomp.co.uk/ Parliament Hill Computers Ltd. Registration Information: https://www.phcomp.co.uk/Contact.html #include <std_disclaimer.h> _______________________________________________ Fail2ban-users mailing list Fail2ban-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fail2ban-users
