Is there any reason why my sshd ipset group would disappear? I
believe it was working, now it gets this error
2019-08-18 03:23:50,924 fail2ban.actions [4381]:
NOTICE [sshd] Ban 188.166.7.24
2019-08-18 03:23:51,041 fail2ban.action [4381]: ERROR ipset
add fail2ban-sshd 188.166.7.24 timeout 7776000 -exist -- stdout: ''
2019-08-18 03:23:51,042 fail2ban.action [4381]: ERROR ipset
add fail2ban-sshd 188.166.7.24 timeout 7776000 -exist -- stderr: 'ipset v6.38:
The set with the given name does not exist\n'
My jail.local has this:
[sshd]
# more restrictive mode
mode = ddos
#port = ssh
port = ssh,534
logpath = %(sshd_log)s
enabled = true
# attempts
maxretry=4
# 4 hours
findtime=14400
# 4 days
bantime = 345600
It appears that login failure attempts appear in fail2ban log, and
"fail2ban-client reload sshd" works but it doesn't create an ipset
group apprarently.
Any ideas what could be wrong?
Should I try to manually create the ipset group? what would be the
command for that?
I don't want to restart all of fail2ban and have a million ban
messages spam me.
_______________________________________________
Fail2ban-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
