On Fri, Oct 31, 2025 at 1:13 PM Tony Guadagno <[email protected]> wrote:
> Hi, I have some questions about the fail2ban implementation in the docker > container. I have it set pretty aggressively and occasionally, someone > gets banned who should not. I looked up how to unban an ip and I see > references to “fail2ban-client” but that command does not work in the > container. Is there another way to remove a banned ip from the list? Is > there a way to add fail2ban-client to the container? > > > If you're using the 1.6.0 container, the implementation is actually not based on Fail2Ban, it's a Guacamole-specific extension that tracks failed logins based on client IP address and blocks those client IPs if they exceed the specified threshold for failed logins within a certain amount of time. The documentation for it is here: https://guacamole.apache.org/doc/gug/auth-ban.html#installing-enabling-brute-force-authentication-detection There currently is no way to affect the list of IP addresses (e.g. remove addresses from the list) - you simply have to allow the timer to expire. There are some configuration parameters available in the document linked above that help you adjust things if you need to tune the duration of the lockout, the number of failed attempts, etc. -Nick >
