|
|
@ -1,8 +1,9 @@ |
|
|
|
[main] |
|
|
|
[main] |
|
|
|
includes = /etc/f2b/conf.d |
|
|
|
includes = /etc/f2b/conf.d |
|
|
|
logdest = stderr |
|
|
|
pidfile = /var/run/f2b.pid |
|
|
|
logfile = /var/log/f2b.log |
|
|
|
logdest = syslog |
|
|
|
loglevel = info |
|
|
|
loglevel = info |
|
|
|
|
|
|
|
logfile = /var/log/f2b.log |
|
|
|
user = root |
|
|
|
user = root |
|
|
|
group = root |
|
|
|
group = root |
|
|
|
daemon = yes |
|
|
|
daemon = yes |
|
|
@ -15,13 +16,15 @@ load = libf2b_filter_preg.so |
|
|
|
|
|
|
|
|
|
|
|
[backend:exec-ipset] |
|
|
|
[backend:exec-ipset] |
|
|
|
load = libf2b_backend_exec.so |
|
|
|
load = libf2b_backend_exec.so |
|
|
|
start = /usr/sbin/ipset create <ID> hash:ip |
|
|
|
start = /sbin/ipset -! create <ID> hash:ip |
|
|
|
stop = /usr/sbin/ipset destroy <ID> |
|
|
|
start = /sbin/iptables -I INPUT -m set --match-set <ID> -j DROP |
|
|
|
ban = /usr/sbin/ipset add <ID> <IP> |
|
|
|
stop = /sbin/iptables -D INPUT -m set --match-set <ID> -j DROP |
|
|
|
check = /usr/sbin/ipset test <ID> <IP> |
|
|
|
stop = /sbin/ipset -! destroy <ID> |
|
|
|
unban = /usr/sbin/ipset del <ID> <IP> |
|
|
|
ban = /sbin/ipset -! add <ID> <IP> |
|
|
|
timeout = 1 |
|
|
|
check = /sbin/ipset -! test <ID> <IP> |
|
|
|
|
|
|
|
unban = /sbin/ipset -! del <ID> <IP> |
|
|
|
|
|
|
|
timeout = 2 |
|
|
|
|
|
|
|
|
|
|
|
[jail:ssh] |
|
|
|
[jail:ssh] |
|
|
|
source = files:/var/log/*.log |
|
|
|
source = files:/var/log/*.log |
|
|
|
filter = preg:filters/preg/ssh |
|
|
|
filter = preg:filters/ssh.preg |
|
|
|