linux:fail2ban
差别
这里会显示出您选择的修订版和当前版本之间的差别。
| 后一修订版 | 前一修订版 | ||
| linux:fail2ban [2016/03/05 22:06] – 创建 memory | linux:fail2ban [2023/12/03 10:24] (当前版本) – 外部编辑 127.0.0.1 | ||
|---|---|---|---|
| 行 29: | 行 29: | ||
| sudo yum install python-inotify | sudo yum install python-inotify | ||
| - | sudo apt-get install python-inotifyx | + | sudo apt-get install python-pyinotify |
| </ | </ | ||
| 行 58: | 行 58: | ||
| # Ban hosts for one hour: | # Ban hosts for one hour: | ||
| bantime = 3600 | bantime = 3600 | ||
| - | |||
| - | # Override / | ||
| - | # 注意centos7需要改用iptables! | ||
| - | banaction = iptables-multiport | ||
| - | |||
| usedns = no | usedns = no | ||
| 行 76: | 行 71: | ||
| sudo fail2ban-client status | sudo fail2ban-client status | ||
| sudo fail2ban-client status ssh | sudo fail2ban-client status ssh | ||
| + | </ | ||
| + | |||
| + | ===== Usage ===== | ||
| + | |||
| + | ==== Check fail2ban status ==== | ||
| + | |||
| + | fail2ban-client status | ||
| + | fail2ban-client status [jail-name] | ||
| + | |||
| + | ==== Unban ip ==== | ||
| + | |||
| + | fail2ban-client set [jail-name] unbanip [ip] | ||
| + | |||
| + | ==== Test filter rule ==== | ||
| + | |||
| + | fail2ban-regex ' | ||
| + | fail2ban-regex / | ||
| + | |||
| + | ===== Ban ip by specified nginx rule ===== | ||
| + | |||
| + | 新增规则限制 '' | ||
| + | |||
| + | <code ini> | ||
| + | [nginx-sms] | ||
| + | enabled = true | ||
| + | port = http,https | ||
| + | filter = nginx-sms | ||
| + | logpath = / | ||
| + | maxtry = 9 | ||
| + | findtime = 86400 | ||
| + | bantime | ||
| + | </ | ||
| + | |||
| + | <code init / | ||
| + | [Definition] | ||
| + | failregex = ^< | ||
| + | ignoreregex = | ||
| </ | </ | ||
linux/fail2ban.1457186805.txt.gz · 最后更改: 2023/12/03 10:24 (外部编辑)