X
Till Brehm

Configure fail2ban to use route instead of iptables to block connections

Fail2ban uses iptables by default to block incoming connections when they exceed the max.  login retries. The iptables rules used by fail2ban might conflict with other firewall rules, so it might be necessary to reconfigure fail2ban to use the route command for blocking incoming connections.

Fail2ban ban using route command

To reconfigure fail2ban for using the route command instead of iptables, edit or create the route.conf file:

nano /etc/fail2ban/action.d/route.conf

There you insert the following lines:

# Fail2Ban configuration file

[Definition]
actionban = ip route add unreachable <ip>
actionunban = ip route del unreachable <ip>

Then add or change the ban action in the jail.local file in the [DEFAULT] section to "route":

nano /etc/fail2ban/jail.local

And add or edit these lines:

# Fail2Ban configuration file

[DEFAULT]

banaction = route
Categories: Debian ISPConfig 3 Ubuntu
Tags: ISPConfig 3
Till Brehm:
Related Post
  1. What is apt-proxy and how to install it on Ubuntu 24.04
  2. Postfix Submission vs. Submissions (SMTPS) port
  3. How to access the /stats folder with custom docroot set in ISPConfig 3
X

Headline

You can control the ways in which we improve and personalize your experience. Please choose whether you wish to allow the following:

Click Here
Privacy Settings