Am 08.03.2025 um 11:56:56 Uhr schrieb Alessandro Vesely via mailop: > I read that since v0.10 fail2ban supports the matching of IPv6 > addresses. I don't use it, so I don't know how it works.
It can check for IPv6 addresses in the log and ban single IPv6 addresses, but I've never seen that it can escalate banning to entire networks depending on the amount of already banned IPs in a subnet. With the single IP ban, an attacker can just use many from a single /64 and fill up the firewall. -- Gruß Marco Send unsolicited bulk mail to [email protected] _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
