We use a Tomcat filter and it works just fine for Guacamole. Filter:
# Fail2Ban tomcat filter # [INCLUDES] # [Definition] failregex = \bAuthentication attempt from \[<HOST>(?:,.*)?\] for user ".*" failed\. # [Init] # journalmatch = _SYSTEMD_UNIT=tomcat.service maxlines = 5 Jail.local: [tomcat] port = http,https,8080 logpath = %(tomcat_access_log)s enabled = yes bantime = 14400 maxretry = 5 Erik Berndt / Systems Administrator 5551 Wellington Rd, Gainesville, VA 20155 703.631.0004 x520 (Phone) / 703.257.1725 (Fax) http://www.superiorpaving.net Need to open an IT support ticket? http://FixIT.superiorpaving.net/portal or [email protected] On Wed, May 16, 2018 at 4:25 PM, mdbarber <[email protected]> wrote: > to cover guacamole? > using it to protect a webmin instance but the default gucamole filter > doesn't work and all the documentation i can find regarding syntax for > filters is out of date. > Any hints please? > regards > mdb > > --- > This email has been checked for viruses by Avast antivirus software. > https://www.avast.com/antivirus > > -- This e-mail and any files transmitted with it are confidential and are intended solely for the use of the individual or entity to whom they are addressed. If you are not the intended recipient or the person responsible for delivering the e-mail to the intended recipient, be advised that you have received this e-mail in error and that any use, dissemination, forwarding, printing or copying of this e-mail is strictly prohibited. If you have received this e-mail in error, please immediately notify Superior Paving Corp. by telephone at (703) 631-0004. You will be reimbursed for reasonable costs incurred in notifying us.
