Adding Fail2Ban monitoring / matrix message

author: Oxbian <got.dacs@slmail.me> 2023-04-28 19:03:32 +0200
committer: Oxbian <got.dacs@slmail.me> 2023-04-28 19:03:32 +0200
commit: 123e38b970c6b58e2614fe39f7889cf1e29527f0 (patch)
tree: d75d5fe663e6a2bd75442565688dcbbaf9232906 /Fail2Ban/jail.local
parent: 2970e7e6a999a2133b4d5539c045dc55b454705d (diff)
download: matrix-monitoring-123e38b970c6b58e2614fe39f7889cf1e29527f0.tar.gz
matrix-monitoring-123e38b970c6b58e2614fe39f7889cf1e29527f0.zip
1 files changed, 39 insertions, 0 deletions
diff --git a/Fail2Ban/jail.local b/Fail2Ban/jail.local
new file mode 100644
index 0000000..774fa35
--- /dev/null
+++ b/Fail2Ban/jail.local
@@ -0,0 +1,39 @@
+# Sample jail.local config
+[DEFAULT]
+
+ignoreip = 127.0.0.1/24
+bantime = 86400
+findtime = 300
+maxretry = 3
+banaction = iptables-multiport
+backend = systemd
+# Action to ban using IP tables and send matrix notification
+
+
+# SSH jail
+[sshd]
+
+enabled = true
+port    = 22
+logpath = /var/log/auth.log
+backend = %(sshd_backend)s
+filter = sshd
+
+
+# Apache2 auth jail
+[apache-auth]
+
+enabled = true
+port     = http,https
+logpath  = /var/log/apache2/error.log
+filter = apache-auth
+maxretry = 3
+
+# Apache2 pass jail
+[apache-pass]
+
+enabled = true
+port    = http,https
+logpath  = /var/log/apache2/access.log
+filter = apache-pass
+maxretry = 3
author	Oxbian <got.dacs@slmail.me>	2023-04-28 19:03:32 +0200
committer	Oxbian <got.dacs@slmail.me>	2023-04-28 19:03:32 +0200
commit	123e38b970c6b58e2614fe39f7889cf1e29527f0 (patch)
tree	d75d5fe663e6a2bd75442565688dcbbaf9232906 /Fail2Ban/jail.local
parent	2970e7e6a999a2133b4d5539c045dc55b454705d (diff)
download	matrix-monitoring-123e38b970c6b58e2614fe39f7889cf1e29527f0.tar.gz matrix-monitoring-123e38b970c6b58e2614fe39f7889cf1e29527f0.zip