Rocky9/enterprise linux; Fail2Ban v1.0.2

Error logged on startup with systemd:

Failed during configuration: Have not found any log file for nginx-http-auth jail

But if I stop the service and start it by hand (based on the `ExecStart=/usr/bin/fail2ban-server -xf start` from fail2ban.service), it works. Log says:

2024-09-22 18:06:40,458 fail2ban.jail           [32660]: INFO    Creating new jail 'nginx-http-auth' 2024-09-22 18:06:40,458 fail2ban.jail           [32660]: INFO Jail 'nginx-http-auth' uses poller {} 2024-09-22 18:06:40,458 fail2ban.jail           [32660]: INFO Initiated 'polling' backend 2024-09-22 18:06:40,464 fail2ban.filter         [32660]: INFO      maxRetry: 5 2024-09-22 18:06:40,464 fail2ban.filter         [32660]: INFO      findtime: 1800 2024-09-22 18:06:40,464 fail2ban.actions        [32660]: INFO      banTime: 345600 2024-09-22 18:06:40,465 fail2ban.filter         [32660]: INFO      encoding: UTF-8 2024-09-22 18:06:40,465 fail2ban.filter         [32660]: INFO Added logfile: '/var/log/nginx/error.log' (pos = 198563, hash = 5b0439e3ff29925ce4d5aef82cb8d0767440a0d8)

What I don't understand is why it would behave differently when started with systemd vs by hand. I haven't changed any configs between doing this.

I have even tried to hardwire it in jail.local, but every time I start it with systemd it seems to ignore the backend settings:

[nginx-http-auth]
enabled = true
backend = polling
journalmatch =

So I'm kindof at a loss. What would be allowing systemd to just completely steamroll the jail.local configs?

Any help is greatly appreciated.

-Brandon

(PS, is there a discord server or something somewhere for this project?)



_______________________________________________
Fail2ban-users mailing list
Fail2ban-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/fail2ban-users

Reply via email to