You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I've been using it in rather clunky fashion, due to limited time, but I want to implement a more robust approach on my web server.
I see you've added an Issue to add Fail2Ban support. Would this be something like piping F2B output into fds so that fds can be used to manage rules? Does fds record changes made to the firewall via ipdables/FirewallD such that it can reset them?
In the interim, I want to use IP lists discovered by F2B on my server as input to fds (in addition to reporting said IPs to AbuseIPDB).
I'd also like fds to consume the daily list provided by ipsum.
My approach would be to use cron to execute piped commands on a daily basis:
Remove all fds blocks using fds reset
Generate text IP list(s) - F2B list gets reported to AbuseIPDB
Pipe list(s) into fds - not sure how to properly do this via --no-reload options with a final --reload option - also not sure how to process the F2B list into fds without redundancy with F2B's native actions via iptables
Profit until tomorrow
Anyway, I'm pretty sure I could hobble something together, but it would likely be ugly and inefficient, so I'm hoping for some suggestions or guidance if I'm not on the right track here.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
Uh oh!
There was an error while loading. Please reload this page.
-
First, love this tool.
I've been using it in rather clunky fashion, due to limited time, but I want to implement a more robust approach on my web server.
I see you've added an Issue to add Fail2Ban support. Would this be something like piping F2B output into fds so that fds can be used to manage rules? Does fds record changes made to the firewall via ipdables/FirewallD such that it can reset them?
In the interim, I want to use IP lists discovered by F2B on my server as input to fds (in addition to reporting said IPs to AbuseIPDB).
I'd also like fds to consume the daily list provided by ipsum.
My approach would be to use cron to execute piped commands on a daily basis:
fds reset--no-reloadoptions with a final--reloadoption - also not sure how to process the F2B list into fds without redundancy with F2B's native actions via iptablesAnyway, I'm pretty sure I could hobble something together, but it would likely be ugly and inefficient, so I'm hoping for some suggestions or guidance if I'm not on the right track here.
TIA
Beta Was this translation helpful? Give feedback.
All reactions