aboutsummaryrefslogtreecommitdiff
path: root/firewall/fail2ban
diff options
context:
space:
mode:
Diffstat (limited to 'firewall/fail2ban')
-rw-r--r--firewall/fail2ban/action.d/nftables-common.local3
-rw-r--r--firewall/fail2ban/jail.local16
2 files changed, 19 insertions, 0 deletions
diff --git a/firewall/fail2ban/action.d/nftables-common.local b/firewall/fail2ban/action.d/nftables-common.local
new file mode 100644
index 0000000..198e93f
--- /dev/null
+++ b/firewall/fail2ban/action.d/nftables-common.local
@@ -0,0 +1,3 @@
+[Init]
+nftables_table = fail2ban
+blocktype = drop
diff --git a/firewall/fail2ban/jail.local b/firewall/fail2ban/jail.local
new file mode 100644
index 0000000..f891d06
--- /dev/null
+++ b/firewall/fail2ban/jail.local
@@ -0,0 +1,16 @@
+[DEFAULT]
+banaction = nftables-multiport
+chain = input
+
+[nginx-http-auth]
+enabled = true
+
+#[apache-auth]
+#enabled = true
+
+[dovecot]
+enabled = true
+port = pop3,pop3s,imap2,imaps,submission,465,sieve
+
+[postfix]
+enabled = true
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-24 22:10:30 +0000