bantime is how long fail2ban will wait until it 'unbans' and removes the IP from its database. I set it at 60 seconds so fail2ban will unban quickly. However, actionunban is empty so nothing happens. 'my_timeout' is the actual time the IP address remains in the ipset. If you stop/restart fail2ban it unbans everything which can take a while. Everything you've banned is now allowed to connect. I don't want that.
Remember that I create the ipset in Shorewall init. So even while I'm restarting fail2ban, the previously banned IP addresses are still not allowed to connect. Bill On 4/9/2016 7:16 PM, [email protected] wrote: > Bill > > I'm scratching my head a bit. > > In your post you say > > I don't let fail2ban 'unban'; I just let the timeout expire (note the > short bantime in jail.local which causes fail2ban to remove the 'ban' from > its database after 60 seconds): > > and in your jail example > > [dovecot-secure] > > set BOTH 'my_timeout' > > action = my_ipset_ipport[port=imap, my_timeout=14400] > > and 'bantime' > > bantime = 60 > > Why are both there, and how are they different? > > Jason > > ------------------------------------------------------------------------------ > Find and fix application performance issues faster with Applications Manager > Applications Manager provides deep performance insights into multiple tiers of > your business applications. It resolves application problems quickly and > reduces your MTTR. Get your free trial! http://pubads.g.doubleclick.net/ > gampad/clk?id=1444514301&iu=/ca-pub-7940484522588532 > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users ------------------------------------------------------------------------------ Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into multiple tiers of your business applications. It resolves application problems quickly and reduces your MTTR. Get your free trial! http://pubads.g.doubleclick.net/ gampad/clk?id=1444514301&iu=/ca-pub-7940484522588532 _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
