Re: [Fail2ban-users] f2b match working, test find lots of matches, but real exec adds only one ip to ipset?

ipset -L f2b-Ip Name: f2b-Ip Type: hash:ip Revision: 4 Header: family inet hashsize 1024 maxelem 65536 timeout 3600 Size in memory: 704 References: 1 Members: 151.237.190.128 timeout 604778 37.49.226.17 timeout 604777 185.125.4.197 timeout 604778 181.194.180.46 timeout 604790 88.199.175

Re: [Fail2ban-users] f2b match working, test find lots of matches, but real exec adds only one ip to ipset?

aha! for those anyway, "before" handshake vs "after" handshake fixing ... -- Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into mu

Re: [Fail2ban-users] f2b match working, test find lots of matches, but real exec adds only one ip to ipset?

On Mon, Apr 11, 2016, at 11:52 AM, Bill Shirley wrote: > Post your filter. cat filter.d/my-ipset.conf [INCLUDES] before = common.conf [Definition] _daemon = postfix/postscreen failregex = ^%(__prefix_line)sHANGUP after .* from \[\]:.* in tests before SMT

Re: [Fail2ban-users] f2b match working, test find lots of matches, but real exec adds only one ip to ipset?

Post your filter. Bill On 4/11/2016 2:45 PM, jaso...@mail-central.com wrote: > > On Mon, Apr 11, 2016, at 11:29 AM, Bill Shirley wrote: >> I don't see anything wrong except you're not using your ipset from Shorewall: >> >> ipset -L f2b-Ip Name: f2b-Ip Type: hash:ip Revision: 4 Header: family inet

Re: [Fail2ban-users] f2b match working, test find lots of matches, but real exec adds only one ip to ipset?

On Mon, Apr 11, 2016, at 11:29 AM, Bill Shirley wrote: > I don't see anything wrong except you're not using your ipset from Shorewall: > > ipset -L f2b-Ip Name: f2b-Ip Type: hash:ip Revision: 4 Header: family inet > hashsize 1024 maxelem 65536 timeout 3600 Size in > memory: 224 References: 0 M

Re: [Fail2ban-users] f2b match working, test find lots of matches, but real exec adds only one ip to ipset?

I don't see anything wrong except you're not using your ipset from Shorewall: ipset -L f2b-Ip Name: f2b-Ip Type: hash:ip Revision: 4 Header: family inet hashsize 1024 maxelem 65536 timeout 3600 Size in memory: 224 References: 0 Members: 88.199.175.11 timeout 604649 References=0 says nothing in

Re: [Fail2ban-users] f2b match working, test find lots of matches, but real exec adds only one ip to ipset?

On Mon, Apr 11, 2016, at 10:32 AM, Bill Shirley wrote: > It could be your ignoreip preventing the ban or not enough hits (maxretry) > within findtime. It also > could be that all those hits are from the same IP address (not likely > thought). iiuc, ignoreip whitelists ONLY the ips it lists. my

Re: [Fail2ban-users] f2b match working, test find lots of matches, but real exec adds only one ip to ipset?

It could be your ignoreip preventing the ban or not enough hits (maxretry) within findtime. It also could be that all those hits are from the same IP address (not likely thought). Post your jail. Bill On 4/10/2016 9:36 PM, jaso...@mail-central.com wrote: > I'm running f2b > > I've tested my ma