On 09/25/2017 09:09 PM, Bill Shirley wrote:
So your ipset is not getting created or has been deleted by
another jail if it shares the same name.
With fail2ban-client -d, look at your sshd jail, specifically the
['set', 'sshd', 'action', 'my_ipset_ip', 'name', 'IPv4-ip']
make sure the name is different that all the other jails. (Disregard
that my action, 'my_ipset_ip', is different than yours.)
Bill
I think I figured it out, I modified jail.d/00-firewalld and added
"banaction = firewallcmd-rich-rules" that seems to do it, at least for ssh.
Jeff
_______________________________________________
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
