I have installed ossechid on 4 server and all are working fine but not on this server. Operating system of server is CentOS 4.4
Problem: Ossec is installed and running. When I try to test brute force by making fake logins to server it should block the ip for 600 seconds. But it's not doing on this server. Ossec installation type is local. In this server there is no file by name active-responses.log in /var/ossec/logs Does ossec need iptables or it got its own firewall. Can anyone suggest why it's not blocking the IP on brute force attempts? Thanks DM
