This shows you the differences between two versions of the page.
fail2ban [2009/06/18 07:54] k2patel |
fail2ban [2020/08/10 02:35] |
||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== Fail2Ban ====== | ||
- | Nice - Lightweight - Protection to linux box | ||
- | |||
- | You can do more than expected with this utility.\\ | ||
- | Here i am using SSH and FTP setting to protect my bandwidth from script kidies. | ||
- | ==== Installation ==== | ||
- | Fail2ban is written in Python, thus no compilation is required. You can even run Fail2ban without installing it.\\ | ||
- | Following is the installation procedure for the centOS. | ||
- | |||
- | <code bash> | ||
- | yum install fail2ban | ||
- | </code> | ||
- | |||
- | Enable fail2ban during system startup. and start it | ||
- | |||
- | <code bash> | ||
- | chkconfig --levels 235 fail2ban on | ||
- | /etc/init.d/fail2ban start | ||
- | </code> | ||
- | ==== Configuration ==== | ||
- | Configuration file is named as jail.conf located at "/etc/fail2ban" \\ | ||
- | Following Options you might consider to setup before proceed. | ||
- | <code text> | ||
- | ignoreip - you might be consider setting your known ip in this section | ||
- | bantime - time specified here is in seconds | ||
- | maxretry - ban after any ip cross this limit. | ||
- | filter - specify filter file e.g. /etc/fail2ban/filter.d | ||
- | action - specify action file e.g. /etc/fail2ban/action.d | ||
- | logpath - where fail2ban look for log | ||
- | </code> |