And also in newer versions, the database works properly (it never got
'purged' before), so if you run everything through fail2ban-client
commands, you'll have a functional, traceable, database-driven system that
can manage all your bans. In addition, your actionunban might have extra
commands - for example, emailing or logging the ban/unban. If you only use
iptables, you might be missing out on other things f2b was configured to do.
I now never ever look at iptables/ipset etc. Everything is managed through
f2b.
Think of it as a centralised front-end to all the various block/firewall
commands you might use for attacks - if f2b is what you used to detect and
block IP addresses, it makes sense for f2b to be what you use to unblock
them.
One other thing: the 0.11.x version of f2b has a ban time "multiplier",
which is just fantastic - if the same IP keeps getting banned, f2b
automatically increases the ban time. To do that you need a long 'purgeage'
setting (so it can remember that an IP was banned a few months ago), and
again once you use f2b to manage your blocks, it can just take care of
everything - you never need to use iptables commands for unblocking,
because f2b 0.11.x manages ban times so much more effectively and
logically. F2b has always managed bans and unbans pretty well, but there's
been some really excellent polish applied to recent versions.
Tony Collins
RMT Tier 1 Health & Safety Representative
Edgware Road Traincrew Depot
07949 228324
On 15 March 2018 at 09:44, Nick Howitt <[email protected]> wrote:
> If you remove firewall rule then restart f2b the block will (may) reappear.
>
> On 15/03/2018 09:21, chaouche yacine via Fail2ban-users wrote:
>
>> Nick,
>>
>> Can you please explain why this is better than just removing the rule
>> from iptables ? because that's how I do with shorewall so I might be doing
>> something wrong.
>>
>> Yassine.
>>
>>
>> On Thursday, March 15, 2018 10:19 AM, Nick Howitt <[email protected]>
>> wrote:
>>
>>
>> fail2ban-client set <JAIL> unbanip <IP>
>>
>> On 15/03/2018 08:29, Ramses wrote:
>> > Hi everybody,
>> >
>> > I have an old version of fail2ban and I'd like know if I have somehow
>> to unban a IP Address that fail2ban has banned.
>> >
>> >
>> > Regards,
>> >
>> > Ramses
>> >
>> > ------------------------------------------------------------
>> ------------------
>> > Check out the vibrant tech community on one of the world's most
>> > engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>> > _______________________________________________
>> > Fail2ban-users mailing list
>> > [email protected] <mailto:[email protected]
>> ourceforge.net>
>> > https://lists.sourceforge.net/lists/listinfo/fail2ban-users
>>
>>
>>
>> ------------------------------------------------------------
>> ------------------
>> Check out the vibrant tech community on one of the world's most
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>> _______________________________________________
>> Fail2ban-users mailing list
>> [email protected] <mailto:[email protected]
>> ourceforge.net>
>> https://lists.sourceforge.net/lists/listinfo/fail2ban-users
>>
>>
>>
>>
>> ------------------------------------------------------------
>> ------------------
>> Check out the vibrant tech community on one of the world's most
>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
>>
>>
>> _______________________________________________
>> Fail2ban-users mailing list
>> [email protected]
>> https://lists.sourceforge.net/lists/listinfo/fail2ban-users
>>
>
>
> ------------------------------------------------------------
> ------------------
> Check out the vibrant tech community on one of the world's most
> engaging tech sites, Slashdot.org! http://sdm.link/slashdot
> _______________________________________________
> Fail2ban-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/fail2ban-users
>
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Fail2ban-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
