Forum

This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.
Sentora Support Forums Sentora Forum Archives Sentora Public Support Forums v1.0.x Community Guides & How-To's v1.0.x v Fail2ban for Sentora (Centos 7)

Fail2ban for Sentora (Centos 7)
bbspike Offline
Sentora Member
*
OS: Centos 7
Version: Not Installed
Server: Cogent datacenter Amsterdam PLESK 12.5
Posts: 165
Threads: 13
Joined: Oct 2014
Reputation: 2
Sex: Male
Thanks: 17
Given 29 thank(s) in 22 post(s)
#7
RE: Fail2ban for Sentora
 10-18-2015, 06:11 AM (This post was last modified: 10-20-2015, 03:16 AM by bbspike.)
Hello all,

If you ever used my script installer for fail2ban please update your /etc/fail2ban/jail.local with the following:

Code:
[DEFAULT]
bantime  = 3600
maxretry = 4
destemail =
ignoreip = 127.0.0.0/8
action = iptables

[ssh]
enabled  = true
action = iptables[name=SSH, port="22"]
port     = ssh
filter   = sentora-ssh
logpath  = /var/log/secure
maxretry = 6
bantime  = 360000

# the sentora-apache filter covers apache auth and overflow
[apache]
enabled  = true
action = iptables-multiport[name=Postfix, port="80,443"]
port     = http,https
filter   = sentora-apache
logpath  = /var/sentora/logs/domains/*/*error.log
maxretry = 6

#sentora
uses also de secure log for proftpd.
[proftpd]
enabled  = true
action = iptables[name=FTP, port="21"]
port     = ftp,ftp-data,ftps,ftps-data
filter   = sentora-proftpd
logpath  = /var/log/secure
maxretry = 5

# the sentora-postfix filter covers postfix and sasl
[postfix]
enabled  = true
action = iptables-multiport[name=Postfix, port="25,465"]
port     = smtp,ssmtp
filter   = sentora-postfix
logpath  = /var/log/maillog
maxretry = 10

# to be fixed yet
#[control-panel]
#enabled
 = true
#port
    = http,https
#filter
  = sentora-control
#logpath
 = /var/log/httpd/error_log
#maxretry
= 4
#bantime
 = 864000
#findtime
= 3600

[dovecot]
enabled  = true
action = iptables-multiport[name=Dovecot, port="143,993,110,995"]
port     = imap,imaps,pop3,pop3s
filter   = sentora-dovecot
logpath  = /var/log/dovecot-info.log
maxretry = 10

There where some flaws and are fixed now.

Don't forget:

Code:
service fail2ban restart
[Image: logo2.png]

My being on this forum is all personal and all is done here by me has nothing to with the company Web Improved I work for Smile
Find
Reply
Thanks given by:


Messages In This Thread
Fail2ban for Sentora (Centos 7) - by bbspike - 06-28-2015, 07:06 AM
RE: Fail2ban for Sentora - by Tango - 09-10-2015, 02:09 AM
RE: Fail2ban for Sentora - by Me.B - 09-10-2015, 05:56 PM
RE: Fail2ban for Sentora - by bbspike - 09-10-2015, 06:59 PM
RE: Fail2ban for Sentora - by Tango - 09-11-2015, 08:29 PM
RE: Fail2ban for Sentora - by bbspike - 09-12-2015, 04:01 PM
RE: Fail2ban for Sentora - by bbspike - 10-18-2015, 06:11 AM
RE: Fail2ban for Sentora - by Tango - 10-19-2015, 06:52 PM
RE: Fail2ban for Sentora - by bbspike - 10-20-2015, 03:16 AM
RE: Fail2ban for Sentora (Centos 7) - by Jettaman - 01-07-2020, 10:05 AM
RE: Fail2ban for Sentora (Centos 7) - by Vedran B - 01-14-2020, 07:32 AM

Possibly Related Threads…
Thread Author Replies Views Last Post
Secure Sentora With SSLForFree Chris L 1 4 ,715 01-22-2020, 09:19 PM
Last Post: ralphharder
[How To] Update from PHP v5.4.16 to v5.6.31 (Includes suhosin patch) [CentOS] betatester3.0 5 17 ,098 03-18-2019, 01:23 AM
Last Post: BigBang
Timeout for Sentora Admin Panel minufreelance 12 45 ,532 11-24-2018, 12:33 PM
Last Post: fearworks

Forum Jump:


Users browsing this thread: 1 Guest(s)