Details |
Last modification |
View Log
| RSS feed
| Rev |
Author |
Line No. |
Line |
| 193 |
- |
1 |
# Fail2Ban filter for SoftEtherVPN
|
|
|
2 |
# Detecting unauthorized access to SoftEtherVPN
|
|
|
3 |
# typically logged in /usr/local/vpnserver/security_log/*/sec.log, or in syslog, depending on configuration
|
|
|
4 |
|
|
|
5 |
[INCLUDES]
|
|
|
6 |
before = common.conf
|
|
|
7 |
|
|
|
8 |
[Definition]
|
|
|
9 |
failregex = ^%(__prefix_line)s(?:(?:\([\d\-]+ [\d:.]+\) )?<SECURITY_LOG>: )?Connection "[^"]+": User authentication failed. The user name that has been provided was "<F-USER>(?:[^"]+|.+)</F-USER>", from <ADDR>\.$
|