Package: fail2ban Version: 0.11.2-2 Severity: normal X-Debbugs-Cc: ang...@zerutek.com
I made a clean install of Debian bullseye (netinstall). fail2ban fail becouse default instalation use iptables, not nftables I guess the package uses iptables for compatibility, but in clean installations it fails because it does not use nftables. I don't know if this configuration can be added by default on clean installs in the file /etc/fail2ban/jail.d/defaults-debian.conf the lines: [DEFAULT] banaction = nftables-multiport banaction_allports = nftables-allports -- System Information: Debian Release: 11.0 APT prefers stable-security APT policy: (500, 'stable-security'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 5.10.0-8-amd64 (SMP w/8 CPU threads) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages fail2ban depends on: ii lsb-base 11.1.0 ii python3 3.9.2-3 Versions of packages fail2ban recommends: ii nftables 0.9.8-3.1 ii python3-pyinotify 0.9.6-1.3 ii python3-systemd 234-3+b4 ii whois 5.5.10 Versions of packages fail2ban suggests: pn mailx <none> pn monit <none> ii rsyslog [system-log-daemon] 8.2102.0-2 pn sqlite3 <none> -- no debconf information