Ping a Specific Port

Question

nulltek

Asked: 2014-10-27 06:20:38 +0800 CST2014-10-27 06:20:38 +0800 CST 2014-10-27 06:20:38 +0800 CST

fail2ban flushing my existing IPTABLES rules

772

I just implemented fail2ban on a server for testing purposes. I have a BLACKLIST chain which blocks a huge set of CIDR masks that I don't want to reach my server. When fail2ban is triggered by a bruteforce attack, it does add the offending IP address properly, however it flushes out my BLACkLIST chain, which I need to keep intact.

Any thoughts on why this is happening and how I can persist the BLACKLIST chain?

1 Answers

Voted

Markus W Mahlberg · Answer 1 · 2014-10-27T06:43:02+08:00

Markus W Mahlberg

2014-10-27T06:43:02+08:002014-10-27T06:43:02+08:00

I assume you use shorewall as your firewall? If yes, you might want to change the action of fail2ban to shorewall instead of iptables in jail.conf:

...
[ssh-iptables]
enabled = false
...

[ssh-shorewall]
enabled  = true
filter   = sshd
action   = shorewall
logpath  = /var/log/auth.log                                                                    
maxretry = 5
....

1

fail2ban flushing my existing IPTABLES rules

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?