Can your firewall action block ip/port combinations ? AFAIK shorewall
can only block ip's.
If your firewall blocks ip/port combinations with fail2ban, you are
right. But since shorewall can't, I'm fine with blocking the ip-address.
The first offending action will block so next offending actions can't
happen any more. So unblocking will occur for the first offending action.
Op 28/11/2018 om 10:35 schreef Nick Howitt:
...
Again, but not knowing Shorewall, I am surprised there is only one
blocking chain for f2b. This means, conceptually, one jail can unblock
another jail's bans which is not good if both jails are blocking the
same IP for different reasons.
_______________________________________________
Fail2ban-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
