Hi @all,
so today I got the time to check, what is wrong with my fail2ban.
I restarted it - now it works fine :).
But i got the following question: when I restart fail2ban, all entrys
from it in iptables will be deleted, right?
I use the program iptables save. With it, I can restore the output file
from itself.
Is there another way to configure, so that fail2ban doesnt delete his
own entrys in iptables, when I stop / restart it?
That would be an easier way as the workaround with iptables-save...
Thanks for support and kind regards from Germany,
Timo
Am 19.08.2015 um 13:46 schrieb Richard Mealing:
Hi Timo,
If you send us the output of - fail2ban-client –d
That might show us the clues. It sounds like fail2ban is catching it,
but not adding anything to your firewall. You might want to check it
is in the firewall using something like – iptables –L | grep x.x.x.x
Thanks,
Rich
*From:*Timo Brandt - Umweltsynergien [mailto:t.bra...@umweltsynergien.de]
*Sent:* 18 August 2015 10:34
*To:* fail2ban-users@lists.sourceforge.net
*Subject:* [Fail2ban-users] Stupid question
Hi together,
I've got a stupid question.
Yesterday, I watched all log files on my debian 7 server with tail -f *.
I've seen some logins with root from different ip's and fail2ban
writes in his log " ip xxx.xxx.xxx.xxx <http://xxx.xxx.xxx.xxx>
already banned.
How can this be? I thought, fail2ban and iptables ban this ip so that
they can't try any login?
can you help me?
Thx,
Timo
------------------------------------------------------------------------------
_______________________________________________
Fail2ban-users mailing list
Fail2ban-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
