Rev 34 | Blame | Compare with Previous | Last modification | View Log | RSS feed
# Fail2Ban configuration file for Bytemark Symbiosis firewall## Author: Yaroslav Halchenko#[INCLUDES]before = iptables-common.conf[Definition]# Option: actionstart# Notes.: command executed once at the start of Fail2Ban.# Values: CMD#actionstart =# Option: actionstop# Notes.: command executed once at the end of Fail2Ban# Values: CMD#actionstop =# Option: actioncheck# Notes.: command executed once before each actionban command# Values: CMD#actioncheck = <iptables> -n -L <chain># Option: actionban# Notes.: command executed when banning an IP.# Values: CMD#actionban = echo 'all' >| /etc/symbiosis/firewall/blacklist.d/<ip>.auto<iptables> -I <chain> 1 -s <ip> -j <blocktype># Option: actionunban# Notes.: command executed when unbanning an IP.# Values: CMD#actionunban = rm -f /etc/symbiosis/firewall/blacklist.d/<ip>.auto<iptables> -D <chain> -s <ip> -j <blocktype> || :[Init]# Option: chain# Notes specifies the iptables chain to which the fail2ban rules should be# added to. blacklist is a chain initiated by symbiosis firewall.# Values: STRING Default: blacklistchain = blacklist# Option: blocktype# Note: This is to match default symbiosis firewall type for blacklisted IPs# Values: STRINGblocktype = DROP