fail2ban permanently block an IP

fail2ban permanently block an IP

Posted By: pmietlicki

Published to Linux on Jun 03, 2015

I've just changed the default configuration (/etc/fail2ban/jail.conf) to permanently block an IP (by changing bantime) :

# "ignoreip" can be an IP address, a CIDR mask or a DNS host
ignoreip =
#bantime = 600
bantime = 31536000
maxretry = 3

It seems to work, now every IP address that tries to brute force SSH access or whatever service that is running on my server is blocked for 1 year !

Tags: fail2ban