| Line 41... |
Line 41... |
| 41 |
# Note: This is what the action does with rules. This can be any jump target
|
41 |
# Note: This is what the action does with rules. This can be any jump target
|
| 42 |
# as per the iptables man page (section 8). Common values are DROP
|
42 |
# as per the iptables man page (section 8). Common values are DROP
|
| 43 |
# REJECT, REJECT --reject-with icmp-port-unreachable
|
43 |
# REJECT, REJECT --reject-with icmp-port-unreachable
|
| 44 |
# Values: STRING
|
44 |
# Values: STRING
|
| 45 |
blocktype = REJECT --reject-with icmp-port-unreachable
|
45 |
blocktype = REJECT --reject-with icmp-port-unreachable
|
| - |
|
46 |
|
| - |
|
47 |
# Option: returntype
|
| - |
|
48 |
# Note: This is the default rule on "actionstart". This should be RETURN
|
| - |
|
49 |
# in all (blocking) actions, except REJECT in allowing actions.
|
| - |
|
50 |
# Values: STRING
|
| - |
|
51 |
returntype = RETURN
|
| - |
|
52 |
|
| - |
|
53 |
# Option: lockingopt
|
| - |
|
54 |
# Notes.: Option was introduced to iptables to prevent multiple instances from
|
| - |
|
55 |
# running concurrently and causing irratic behavior. -w was introduced
|
| - |
|
56 |
# in iptables 1.4.20, so might be absent on older systems
|
| - |
|
57 |
# See https://github.com/fail2ban/fail2ban/issues/1122
|
| - |
|
58 |
# Values: STRING
|
| - |
|
59 |
lockingopt =
|
| - |
|
60 |
|
| - |
|
61 |
# Option: iptables
|
| - |
|
62 |
# Notes.: Actual command to be executed, including common to all calls options
|
| - |
|
63 |
# Values: STRING
|
| - |
|
64 |
iptables = iptables <lockingopt>
|