On Mon, Apr 11, 2016, at 12:21 AM, Bill Shirley wrote: > bantime is how long fail2ban will wait until it 'unbans' and removes the IP > from its database. I set it at 60 seconds > so fail2ban will unban quickly. However, actionunban is empty so nothing > happens.
Fixed my actionunban. Silly omission. Now what happens is clear. Thanks. Not sure why ban=60 is even set for the jail ... just to keep the DB trimmed? > 'my_timeout' is the actual > time the IP address remains in the ipset. If you stop/restart fail2ban it > unbans everything which can take a while. > Everything you've banned is now allowed to connect. I don't want that. > > Remember that I create the ipset in Shorewall init. So even while I'm > restarting fail2ban, the previously banned > IP addresses are still not allowed to connect. Got that too. Nice to have. Still have that bans-only-1-addy issue; different problem ... TA Jason ------------------------------------------------------------------------------ Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into multiple tiers of your business applications. It resolves application problems quickly and reduces your MTTR. Get your free trial! http://pubads.g.doubleclick.net/ gampad/clk?id=1444514301&iu=/ca-pub-7940484522588532 _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
