you just need to adjust iptables rules to use -m multiport instead of plain --dport, and then you can specify multiple ports. I will add a note to README.Debian and close the bug
On Wed, 14 Jun 2006, Bernd Zeimetz wrote:
> Package: fail2ban
> Version: 0.6.1-8
> Severity: wishlist
> Hey,
> It would we really nice if it would be possible to configure multiple ports
> per service.
> >From [SASL]:
> # Option: port
> # Notes.: specifies port to monitor
> port = smtp
> I use sasl to authenticate several services, so I'd like to block more than
> one
> port. Although I didn't test it I think that port ranges like 1234:5678 work,
> if
> not, see it as another wish.
> Thanks for the awesome tool - everything else works very well!
> Best regards,
> Bernd
> -- System Information:
> Debian Release: testing/unstable
> APT prefers testing
> APT policy: (990, 'testing'), (500, 'unstable'), (500, 'stable')
> Architecture: amd64 (x86_64)
> Shell: /bin/sh linked to /bin/bash
> Kernel: Linux 2.6.14.6-grsec
> Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
> Versions of packages fail2ban depends on:
> ii iptables 1.3.3-2 Linux kernel 2.4+ iptables
> adminis
> ii lsb-base 3.1-10 Linux Standard Base 3.1 init
> scrip
> ii python 2.3.5-5 An interactive high-level
> object-o
> fail2ban recommends no packages.
> -- no debconf information
--
.-.
=------------------------------ /v\ ----------------------------=
Keep in touch // \\ (yoh@|www.)onerussian.com
Yaroslav Halchenko /( )\ ICQ#: 60653192
Linux User ^^-^^ [175555]
pgpmSJUFTvUnH.pgp
Description: PGP signature
