On 04/12/2015 06:17 PM, William Lewis wrote:
Well, since I had only one person offer any suggestions (no joy) I'll
take another approach...
Please understand this list is volunteers, it may take a few days for
someone to see your message who can respond.
Is there anyone on this list that is /_SUCCESSFULLY_/ USING "COMPLAIN"
as part of their Fail2Ban setup ?
I actually just enabled it for fun after seeing your initial post. It
works fine for me (actually I don't like some things about it - but it
functions).
Please provide the version of fail2ban you are using. Along with logs
generated during the failure you describe.
Please also note that "complain" is simply an action, one of many, that
can be configured for any number of jails.
The output of `fail2ban-client status` (confirming the jail did not
start) and `fail2ban-client -d` would be useful, in addition to
fail2ban's logs.
Most likely there is simply a syntactical error somewhere, some basic
debugging will surely find it.
If so, please contact me so I can confer with you.
Thanks,
Bill
---------- Original Message ------------------
Hello.
I am using Fail2Ban (Version 0.8.6-3wheezy3build0.12.04.1) on Ubuntu
Linux 12.04.4, 64-bit Server, Shorewall Firewall.
I noticed that when I use the "COMPLAIN" feature on ANY of my JAILS,
then that jail wont run upon starting Fail2Ban.
If I comment out the "Complain" and restart Fail2Ban, then that Jail
will run.
For example, if I use the "VSFTPD" jail, with these settings, the
VSFTPD Jail wont start.
--------------------------------------------------------------------------
*[vsftpd]
enabled = true
port = ftp,ftp-data,ftps,ftps-data
filter = vsftpd
logpath = /var/log/vsftpd.log
banaction = shorewall
action = complain[logpath=/var/log/vsftpd.log]
maxretry = 3
*
For comparison, here's the jail I was using:
[sshd]
enabled = true
action = iptables[name=sshd, port=ssh, protocol=tcp]
complain[logpath=/var/log/secure.log, mailargs='-c
[email protected]']
logpath = /var/log/secure
**--------------------------------------------------------------------------
If I comment out the COMPLAIN line like this, then the jail will run.
*# action = complain[logpath=/var/log/vsftpd.log]
*Any ideas/suggestions ?
Thanks
Wm Lewis
------------------------------------------------------------------------------
BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT
Develop your own process in accordance with the BPMN 2 standard
Learn Process modeling best practices with Bonita BPM through live exercises
http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_
source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF
_______________________________________________
Fail2ban-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
