I've only got this working with sshd which was my main concern but I have
the following that seems to work:
In /etc/fail2ban/jail.d:
$ ll
total 16
-rw-r--r--. 1 root root 270 Oct 3 17:43 00-firewalld.conf
-rw-r--r--. 1 root root 272 Oct 3 17:43 00-systemd.conf
-rw-r--r--. 1 root root 40 Mar 19
On Fri, 25 Nov 2016 20:31:13 -0500
Alex wrote:
> firewalld just doesn't seem to be appropriate for anything more than a
> desktop.
systemctl list-unit-files | fgrep firewall
systemctl disable
systemctl mask
Now firewalld is an inert lump.
systemctl enable iptables.service ip6tables.service
On 26.11.2016, Alex wrote:
> firewalld just doesn't seem to be appropriate for anything more than a
> desktop. I'd appreciate any ideas on how you build a firewall for
> fedora servers, particularly as it relates to interoperating with
> fail2ban and standard Internet services.
Just disable it e
On 11/26/16 09:31, Alex wrote:
> We typically offer submission, simap/spop, smtp, http/https, ssh, and
> domain services on our Internet servers. We also need snmp and nrpe
> for monitoring.
Except for "nrpe" (maybe known by a different name?) all of the services you
mention can
be selected in
Alex writes:
We typically offer submission, simap/spop, smtp, http/https, ssh, and
domain services on our Internet servers. We also need snmp and nrpe
for monitoring.
Does anyone have a set of reasonable firewalld rules and understand
how it interacts with fail2ban that they could share? firewa
I don't use fail2ban, so I can't vouch that these instructions work. That
being said, a quick google search of "firewalld fail2ban" led me to the
very first search result of:
https://fedoraproject.org/wiki/Fail2ban_with_FirewallD
Do those instructions work?
On Fri, Nov 25, 2016 at 8:31 PM, Alex
Hi,
I'm most familiar and comfortable with iptables, and use shorewall on
my firewalls. With fedora23, it appears the default has shifted to
firewalld. This has created a problem for me ever since, particularly
with trying to build a reasonable firewall on my mail servers, as well
as interacting w
