From 85f75aec93f4bb65220b270729ccfd81a75e6dd9 Mon Sep 17 00:00:00 2001 From: Elian Loraux <elian.loraux@tetras-libre.fr> Date: Tue, 11 Feb 2025 15:34:26 +0100 Subject: [PATCH] add banaction config --- upgrade/traefik_fail2ban.sh | 15 ++++++++++++++- 1 file changed, 14 insertions(+), 1 deletion(-) diff --git a/upgrade/traefik_fail2ban.sh b/upgrade/traefik_fail2ban.sh index 028741a..5c7af03 100644 --- a/upgrade/traefik_fail2ban.sh +++ b/upgrade/traefik_fail2ban.sh @@ -7,6 +7,7 @@ logpath = /home/dockerweb/traefik/log/access.log chain = DOCKER-USER mode = aggressive findtime = 4h +banaction = docker-page EOF cat <<EOF > /etc/fail2ban/jail.d/nocloud_base.conf [sshd] @@ -21,5 +22,17 @@ banaction = %(banaction_allports)s bantime = 1w findtime = 1d EOF -fail2ban-client reload +cat <<EOF > /etc/fail2ban/action.d/docker-page.conf +[Definition] + +actionstart = + +actionstop = + +actioncheck = +actionban = cd /home/dockerweb/ban; bash ban.sh <ip> + +actionunban = cd /home/dockerweb/ban; bash unban.sh <ip> +EOF +fail2ban-client reload -- GitLab