fail2ban permanently block an IP

fail2ban permanently block an IP

Posted By: pmietlicki

Published to Linux on Jun 03, 2015

I've just changed the default configuration (/etc/fail2ban/jail.conf) to permanently block an IP (by changing bantime) :

[DEFAULT]
# "ignoreip" can be an IP address, a CIDR mask or a DNS host
ignoreip = 127.0.0.0/8 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16
#bantime = 600
bantime = 31536000
maxretry = 3

It seems to work, now every IP address that tries to brute force SSH access or whatever service that is running on my server is blocked for 1 year !

Tags: fail2ban

Archive