Difference between revisions of "CentOS 7.x fail2ban"

From Notes_Wiki
(Created page with "<yambe:breadcrumb>CentOS_7.x_Security_Tools|CentOS 7.x Security Tools</yambe:breadcrumb> =CentOS 7.x fail2ban= To configure fail2ban on CentOS 7.x use: # yum -y install epel...")
 
m
Line 23: Line 23:


There is also older article on fail2ban at [[Fail2ban]]
There is also older article on fail2ban at [[Fail2ban]]
In case of email server using postfix and dovecot add
<pre>
  enabled=true
</pre>
under dovecot and posfix-sasl also.  This would then create three jails including sshd.


Refer:
Refer:
* https://linode.com/docs/security/using-fail2ban-for-security/
* https://linode.com/docs/security/using-fail2ban-for-security/

Revision as of 09:20, 29 March 2018

<yambe:breadcrumb>CentOS_7.x_Security_Tools|CentOS 7.x Security Tools</yambe:breadcrumb>

CentOS 7.x fail2ban

To configure fail2ban on CentOS 7.x use:

  1. yum -y install epel-release
  2. yum -y install fail2ban
  3. cp /etc/fail2ban/fail2ban.conf /etc/fail2ban/fail2ban.local
  4. cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local
  5. vim /etc/fail2ban/jail.local 
    ...
    

    backend=systemd
    

    ...
    

    [sshd]
    

    enabled = true
    

    ...
  6. systemctl start fail2ban
  7. systemctl enable fail2ban
  8. fail2ban-client status
  9. fail2ban-client status sshd

There is also older article on fail2ban at Fail2ban


In case of email server using postfix and dovecot add 

   enabled=true

under dovecot and posfix-sasl also. This would then create three jails including sshd.


Refer:

Retrieved from "http://www.sbarjatiya.com/notes_wiki/index.php?title=CentOS_7.x_fail2ban&oldid=3041"