computing:fail2ban
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revisionLast revisionBoth sides next revision | ||
| computing:fail2ban [2019/11/03 05:30] – oemb1905 | computing:fail2ban [2023/12/27 16:06] – oemb1905 | ||
|---|---|---|---|
| Line 3: | Line 3: | ||
| * **Jonathan Haack** | * **Jonathan Haack** | ||
| * **Haack' | * **Haack' | ||
| - | * **oemb1905@jonathanhaack.com** | + | * **oemb1905@jonathanhaack.com** |
| ------------------------------------------- | ------------------------------------------- | ||
| Line 58: | Line 58: | ||
| sudo fail2ban-client status | sudo fail2ban-client status | ||
| - | Hope this helps! | + | Hope this helps! Oh yeah ... here is how to remove a false positive! |
| - | --- //[[oemb1905@jonathanhaack.com|oemb1905]] | + | fail2ban-client set ssh unbanip 10.xx.15x.12x |
| + | fail2ban-client unban --all | ||
| + | |||
| + | Another method that does more than individual services, and instead zaps all records: | ||
| + | |||
| + | sudo systemctl stop fail2ban | ||
| + | sudo truncate -s 0 / | ||
| + | sudo rm / | ||
| + | sudo systemctl restart fail2ban | ||
| + | |||
| + | Systemd log issues. Change the sshd jail as follows | ||
| + | |||
| + | sudo nano / | ||
| + | backend = systemd | ||
| + | #backend = %(sshd_backend)s | ||
| + | |||
| + | Some recommend adding backend = systemd into jail.conf, but I've found that does nothing. The error over ipv6 not being set and using auto can be removed as follows: | ||
| + | |||
| + | |||
| + | --- //[[jonathan@haacksnetworking.org|oemb1905]] | ||
computing/fail2ban.txt · Last modified: 2023/12/27 16:08 by oemb1905
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
