WebSVN – configs – Diff – /homeserver/etc/fail2ban/action.d/symbiosis-blacklist-allports.conf



# Fail2Ban configuration file for Bytemark Symbiosis firewall
#
# Author: Yaroslav Halchenko
#
 
[INCLUDES]
 
before = iptables-common.conf
 
[Definition]
 
# Option:  actionstart
# Notes.:  command executed once at the start of Fail2Ban.

 
# Option:  actioncheck
# Notes.:  command executed once before each actionban command
# Values:  CMD
#
actioncheck = <iptables> -n -L <chain>
 
# Option:  actionban
# Notes.:  command executed when banning an IP.
# Values:  CMD
#
actionban = echo 'all' >| /etc/symbiosis/firewall/blacklist.d/<ip>.auto
            <iptables> -I <chain> 1 -s <ip> -j <blocktype>
 
# Option:  actionunban
# Notes.:  command executed when unbanning an IP.
# Values:  CMD
#
actionunban = rm -f /etc/symbiosis/firewall/blacklist.d/<ip>.auto
              <iptables> -D <chain> -s <ip> -j <blocktype> || :
 
[Init]
 
# Option:  chain
# Notes    specifies the iptables chain to which the fail2ban rules should be

Rev 34	Rev 39
Line 1...	Line 1...
1	`# Fail2Ban configuration file for Bytemark Symbiosis firewall`	1	`# Fail2Ban configuration file for Bytemark Symbiosis firewall`
2	`#`	2	`#`
3	`# Author: Yaroslav Halchenko`	3	`# Author: Yaroslav Halchenko`
4	`#`	4	`#`
5		5
-		6	`[INCLUDES]`
-		7
-		8	`before = iptables-common.conf`
6		9
7	`[Definition]`	10	`[Definition]`
8		11
9	`# Option: actionstart`	12	`# Option: actionstart`
10	`# Notes.: command executed once at the start of Fail2Ban.`	13	`# Notes.: command executed once at the start of Fail2Ban.`
Line 20...	Line 23...
20		23
21	`# Option: actioncheck`	24	`# Option: actioncheck`
22	`# Notes.: command executed once before each actionban command`	25	`# Notes.: command executed once before each actionban command`
23	`# Values: CMD`	26	`# Values: CMD`
24	`#`	27	`#`
25	`actioncheck = iptables -n -L <chain>`	28	`actioncheck = <iptables> -n -L <chain>`
26		29
27	`# Option: actionban`	30	`# Option: actionban`
28	`# Notes.: command executed when banning an IP.`	31	`# Notes.: command executed when banning an IP.`
29	`# Values: CMD`	32	`# Values: CMD`
30	`#`	33	`#`
31	`actionban = echo 'all' >\| /etc/symbiosis/firewall/blacklist.d/<ip>.auto`	34	`actionban = echo 'all' >\| /etc/symbiosis/firewall/blacklist.d/<ip>.auto`
32	`iptables -I <chain> 1 -s <ip> -j <blocktype>`	35	`<iptables> -I <chain> 1 -s <ip> -j <blocktype>`
33		36
34	`# Option: actionunban`	37	`# Option: actionunban`
35	`# Notes.: command executed when unbanning an IP.`	38	`# Notes.: command executed when unbanning an IP.`
36	`# Values: CMD`	39	`# Values: CMD`
37	`#`	40	`#`
38	`actionunban = rm -f /etc/symbiosis/firewall/blacklist.d/<ip>.auto`	41	`actionunban = rm -f /etc/symbiosis/firewall/blacklist.d/<ip>.auto`
39	`iptables -D <chain> -s <ip> -j <blocktype> \|\| :`	42	`<iptables> -D <chain> -s <ip> -j <blocktype> \|\| :`
40		43
41	`[Init]`	44	`[Init]`
42		45
43	`# Option: chain`	46	`# Option: chain`
44	`# Notes specifies the iptables chain to which the fail2ban rules should be`	47	`# Notes specifies the iptables chain to which the fail2ban rules should be`

Subversion Repositories configs

(root)/homeserver/etc/fail2ban/action.d/symbiosis-blacklist-allports.conf – Rev 34 → 39