added fail2ban config
This commit is contained in:
dado
4
etc/fail2ban/filter.d/caddy-custom.conf
Normal file
4
etc/fail2ban/filter.d/caddy-custom.conf
Normal file
@@ -0,0 +1,4 @@
|
|||||||
|
[Definition]
|
||||||
|
failregex = ^.*"remote_ip":"<HOST>",.*?"status":(?:4\d{2}|5\d{2}),.*$
|
||||||
|
ignoreregex =
|
||||||
|
datepattern = LongEpoch
|
||||||
28
etc/fail2ban/jail.local
Normal file
28
etc/fail2ban/jail.local
Normal file
@@ -0,0 +1,28 @@
|
|||||||
|
[DEFAULT]
|
||||||
|
destemail =
|
||||||
|
sendername = Fail2Ban
|
||||||
|
|
||||||
|
[sshd]
|
||||||
|
enabled = true
|
||||||
|
port = 1222
|
||||||
|
mode = aggressive
|
||||||
|
filter = sshd
|
||||||
|
maxretry = 3
|
||||||
|
findtime = 5m
|
||||||
|
bantime = 120m
|
||||||
|
logpath = %(sshd_log)s
|
||||||
|
sshd_backend = systemd
|
||||||
|
|
||||||
|
[caddy]
|
||||||
|
backend = auto
|
||||||
|
enabled = true
|
||||||
|
chain = FORWARD
|
||||||
|
protocol = tcp
|
||||||
|
port = http,https
|
||||||
|
filter = caddy-custom
|
||||||
|
maxretry = 3
|
||||||
|
# 24h
|
||||||
|
bantime = 86400
|
||||||
|
# 12h
|
||||||
|
findtime = 43200 #12h
|
||||||
|
logpath = /var/log/caddy/access.log
|
||||||
Reference in New Issue
Block a user