Subversion Repositories configs

Rev

Details | Last modification | View Log | RSS feed

Rev Author Line No. Line
4 - 1 
# Fail2Ban configuration file
2 
#
3 
# Author: Nick Munger
4 
# Modified by: Cyril Jaquier
5 
#
6 
#
7 
 
8 
[Definition]
9 
 
10 
# Option:  actionstart
11 
# Notes.:  command executed once at the start of Fail2Ban.
12 
# Values:  CMD
13 
#
14 
actionstart =
15 
 
16 
 
17 
# Option:  actionstop
18 
# Notes.:  command executed once at the end of Fail2Ban
19 
# Values:  CMD
20 
#
21 
actionstop =
22 
 
23 
 
24 
# Option:  actioncheck
25 
# Notes.:  command executed once before each actionban command
26 
# Values:  CMD
27 
#
28 
actioncheck =
29 
 
30 
 
31 
# Option:  actionban
32 
# Notes.:  command executed when banning an IP. Take care that the
33 
#          command is executed with Fail2Ban user rights.
34 
# Tags:    See jail.conf(5) man page
35 
# Values:  CMD
36 
#
37 
actionban = ipfw add <blocktype> tcp from <ip> to <localhost> <port>
38 
 
39 
 
40 
# Option:  actionunban
41 
# Notes.:  command executed when unbanning an IP. Take care that the
42 
#          command is executed with Fail2Ban user rights.
43 
# Tags:    See jail.conf(5) man page
44 
# Values:  CMD
45 
#
5 - 46 
actionunban = ipfw delete `ipfw list | grep -i "[^0-9]<ip>[^0-9]" | awk '{print $1;}'`
4 - 47 
 
48 
[Init]
49 
 
50 
# Option:  port
51 
# Notes.:  specifies port to monitor
52 
# Values:  [ NUM | STRING ]
53 
#
54 
port = ssh
55 
 
56 
# Option:  localhost
57 
# Notes.:  the local IP address of the network interface
58 
# Values:  IP
59 
#
60 
localhost = 127.0.0.1
61 
 
62 
 
63 
# Option:  blocktype
64 
# Notes.:  How to block the traffic. Use a action from man 5 ipfw
65 
#          Common values: deny, unreach port, reset
66 
# Values:  STRING
67 
#
68 
blocktype = unreach port