53 lines
1.3 KiB
Plaintext
53 lines
1.3 KiB
Plaintext
# External command that will take an tagged arguments to ignore, e.g. <ip>,
|
|
# and return true if the IP is to be ignored. False otherwise.
|
|
#
|
|
# ignorecommand = /path/to/command <ip>
|
|
ignorecommand =
|
|
|
|
# "bantime" is the number of seconds that a host is banned.
|
|
bantime = 10m
|
|
|
|
# A host is banned if it has generated "maxretry" during the last "findtime"
|
|
# seconds.
|
|
findtime = 10m
|
|
|
|
# "maxretry" is the number of failures before a host get banned.
|
|
maxretry = 5
|
|
|
|
backend = auto
|
|
|
|
|
|
|
|
#
|
|
# ACTIONS
|
|
#
|
|
|
|
# Some options used for actions
|
|
|
|
# Destination email address used solely for the interpolations in
|
|
# jail.{conf,local,d/*} configuration files.
|
|
destemail = root@localhost
|
|
|
|
# Sender email address used solely for some actions
|
|
sender = root@<fq-hostname>
|
|
|
|
# E-mail action. Since 0.8.1 Fail2Ban uses sendmail MTA for the
|
|
# mailing. Change mta configuration parameter to mail if you want to
|
|
# revert to conventional 'mail'.
|
|
mta = sendmail
|
|
|
|
# Default protocol
|
|
protocol = tcp
|
|
|
|
# Specify chain where jumps would need to be added in ban-actions expecting parameter chain
|
|
chain = <known/chain>
|
|
|
|
# Format of user-agent https://tools.ietf.org/html/rfc7231#section-5.5.3
|
|
fail2ban_agent = Fail2Ban/%(fail2ban_version)s
|
|
|
|
#
|
|
# Action shortcuts. To be used to define action parameter
|
|
|
|
banaction = ufw
|
|
banaction_allports = ufw
|