__ __ __ __ _____ _ _ _____ _ _ _ | \/ | \ \ / / | __ \ (_) | | / ____| | | | | | \ / |_ __\ V / | |__) | __ ___ ____ _| |_ ___ | (___ | |__ ___| | | | |\/| | '__|> < | ___/ '__| \ \ / / _` | __/ _ \ \___ \| '_ \ / _ \ | | | | | | |_ / . \ | | | | | |\ V / (_| | || __/ ____) | | | | __/ | | |_| |_|_(_)_/ \_\ |_| |_| |_| \_/ \__,_|\__\___| |_____/|_| |_|\___V 2.1 if you need WebShell for Seo everyday contact me on Telegram Telegram Address : @jackleetFor_More_Tools:
# Fail2Ban configuration file
#
# Authors: Sergey G. Brester (sebres), Cyril Jaquier, Daniel Black,
# Yaroslav O. Halchenko, Alexander Koeppe et al.
#
[Definition]
# Option: type
# Notes.: type of the action.
# Values: [ oneport | multiport | allports ] Default: oneport
#
type = oneport
# Option: actionflush
# Notes.: command executed once to flush IPS, by shutdown (resp. by stop of the jail or this action)
# Values: CMD
#
actionflush = <iptables> -F f2b-<name>
# Option: actionstart
# Notes.: command executed on demand at the first ban (or at the start of Fail2Ban if actionstart_on_demand is set to false).
# Values: CMD
#
actionstart = { <iptables> -C f2b-<name> -j <returntype> >/dev/null 2>&1; } || { <iptables> -N f2b-<name> || true; <iptables> -A f2b-<name> -j <returntype>; }
<_ipt_add_rules>
# Option: actionstop
# Notes.: command executed at the stop of jail (or at the end of Fail2Ban)
# Values: CMD
#
actionstop = <_ipt_del_rules>
<actionflush>
<iptables> -X f2b-<name>
# Option: actioncheck
# Notes.: command executed once before each actionban command
# Values: CMD
#
actioncheck = <_ipt_check_rules>
# Option: actionban
# Notes.: command executed when banning an IP. Take care that the
# command is executed with Fail2Ban user rights.
# Tags: See jail.conf(5) man page
# Values: CMD
#
actionban = <iptables> -I f2b-<name> 1 -s <ip> -j <blocktype>
# Option: actionunban
# Notes.: command executed when unbanning an IP. Take care that the
# command is executed with Fail2Ban user rights.
# Tags: See jail.conf(5) man page
# Values: CMD
#
actionunban = <iptables> -D f2b-<name> -s <ip> -j <blocktype>
# Option: pre-rule
# Notes.: prefix parameter(s) inserted to the begin of rule. No default (empty)
#
pre-rule =
rule-jump = -j <_ipt_rule_target>
# Several capabilities used internaly:
_ipt_for_proto-iter = for proto in $(echo '<protocol>' | sed 's/,/ /g'); do
_ipt_for_proto-done = done
_ipt_add_rules = <_ipt_for_proto-iter>
{ %(_ipt_check_rule)s >/dev/null 2>&1; } || { <iptables> -I <chain> %(_ipt_chain_rule)s; }
<_ipt_for_proto-done>
_ipt_del_rules = <_ipt_for_proto-iter>
<iptables> -D <chain> %(_ipt_chain_rule)s
<_ipt_for_proto-done>
_ipt_check_rules = <_ipt_for_proto-iter>
%(_ipt_check_rule)s
<_ipt_for_proto-done>
_ipt_chain_rule = <pre-rule><ipt_<type>/_chain_rule>
_ipt_check_rule = <iptables> -C <chain> %(_ipt_chain_rule)s
_ipt_rule_target = f2b-<name>
[ipt_oneport]
_chain_rule = -p $proto --dport <port> <rule-jump>
[ipt_multiport]
_chain_rule = -p $proto -m multiport --dports <port> <rule-jump>
[ipt_allports]
_chain_rule = -p $proto <rule-jump>
[Init]
# Option: chain
# Notes specifies the iptables chain to which the Fail2Ban rules should be
# added
# Values: STRING Default: INPUT
chain = INPUT
# Default name of the chain
#
name = default
# Option: port
# Notes.: specifies port to monitor
# Values: [ NUM | STRING ] Default:
#
port = ssh
# Option: protocol
# Notes.: internally used by config reader for interpolations.
# Values: [ tcp | udp | icmp | all ] Default: tcp
#
protocol = tcp
# Option: blocktype
# Note: This is what the action does with rules. This can be any jump target
# as per the iptables man page (section 8). Common values are DROP
# REJECT, REJECT --reject-with icmp-port-unreachable
# Values: STRING
blocktype = REJECT --reject-with icmp-port-unreachable
# Option: returntype
# Note: This is the default rule on "actionstart". This should be RETURN
# in all (blocking) actions, except REJECT in allowing actions.
# Values: STRING
returntype = RETURN
# Option: lockingopt
# Notes.: Option was introduced to iptables to prevent multiple instances from
# running concurrently and causing irratic behavior. -w was introduced
# in iptables 1.4.20, so might be absent on older systems
# See https://github.com/fail2ban/fail2ban/issues/1122
# Values: STRING
lockingopt = -w
# Option: iptables
# Notes.: Actual command to be executed, including common to all calls options
# Values: STRING
iptables = iptables <lockingopt>
[Init?family=inet6]
# Option: blocktype (ipv6)
# Note: This is what the action does with rules. This can be any jump target
# as per the iptables man page (section 8). Common values are DROP
# REJECT, REJECT --reject-with icmp6-port-unreachable
# Values: STRING
blocktype = REJECT --reject-with icmp6-port-unreachable
# Option: iptables (ipv6)
# Notes.: Actual command to be executed, including common to all calls options
# Values: STRING
iptables = ip6tables <lockingopt>
| Name | Type | Size | Permission | Actions |
|---|---|---|---|---|
| abuseipdb.conf | File | 3.66 KB | 0644 |
|
| apf.conf | File | 587 B | 0644 |
|
| apprise.conf | File | 1.38 KB | 0644 |
|
| blocklist_de.conf | File | 2.65 KB | 0644 |
|
| bsd-ipfw.conf | File | 3.15 KB | 0644 |
|
| cloudflare-token.conf | File | 2.93 KB | 0644 |
|
| cloudflare.conf | File | 2.97 KB | 0644 |
|
| complain.conf | File | 4.66 KB | 0644 |
|
| dshield.conf | File | 7.5 KB | 0644 |
|
| dummy.conf | File | 1.68 KB | 0644 |
|
| firewallcmd-allports.conf | File | 1.47 KB | 0644 |
|
| firewallcmd-common.conf | File | 2.59 KB | 0644 |
|
| firewallcmd-ipset.conf | File | 3.58 KB | 0644 |
|
| firewallcmd-multiport.conf | File | 1.24 KB | 0644 |
|
| firewallcmd-new.conf | File | 1.85 KB | 0644 |
|
| firewallcmd-rich-logging.conf | File | 1021 B | 0644 |
|
| firewallcmd-rich-rules.conf | File | 1.71 KB | 0644 |
|
| helpers-common.conf | File | 592 B | 0644 |
|
| hostsdeny.conf | File | 1.62 KB | 0644 |
|
| ipfilter.conf | File | 1.54 KB | 0644 |
|
| ipfw.conf | File | 1.47 KB | 0644 |
|
| iptables-allports.conf | File | 291 B | 0644 |
|
| iptables-ipset-proto4.conf | File | 1.93 KB | 0644 |
|
| iptables-ipset-proto6-allports.conf | File | 814 B | 0644 |
|
| iptables-ipset-proto6.conf | File | 773 B | 0644 |
|
| iptables-ipset.conf | File | 2.52 KB | 0644 |
|
| iptables-multiport-log.conf | File | 2.11 KB | 0644 |
|
| iptables-multiport.conf | File | 232 B | 0644 |
|
| iptables-new.conf | File | 332 B | 0644 |
|
| iptables-xt_recent-echo.conf | File | 2.78 KB | 0644 |
|
| iptables.conf | File | 4.68 KB | 0644 |
|
| ipthreat.conf | File | 4.19 KB | 0644 |
|
| mail-buffered.conf | File | 2.44 KB | 0644 |
|
| mail-whois-common.conf | File | 1.03 KB | 0644 |
|
| mail-whois-lines.conf | File | 2.4 KB | 0644 |
|
| mail-whois.conf | File | 1.85 KB | 0644 |
|
| mail.conf | File | 1.72 KB | 0644 |
|
| mynetwatchman.conf | File | 5.2 KB | 0644 |
|
| netscaler.conf | File | 1.46 KB | 0644 |
|
| nftables-allports.conf | File | 383 B | 0644 |
|
| nftables-multiport.conf | File | 384 B | 0644 |
|
| nftables.conf | File | 6.17 KB | 0644 |
|
| nginx-block-map.conf | File | 3.92 KB | 0644 |
|
| npf.conf | File | 1.49 KB | 0644 |
|
| nsupdate.conf | File | 3.16 KB | 0644 |
|
| osx-afctl.conf | File | 497 B | 0644 |
|
| osx-ipfw.conf | File | 2.25 KB | 0644 |
|
| pf.conf | File | 3.66 KB | 0644 |
|
| route.conf | File | 1023 B | 0644 |
|
| sendmail-buffered.conf | File | 2.74 KB | 0644 |
|
| sendmail-common.conf | File | 1.89 KB | 0644 |
|
| sendmail-geoip-lines.conf | File | 1.72 KB | 0644 |
|
| sendmail-whois-ipjailmatches.conf | File | 1.03 KB | 0644 |
|
| sendmail-whois-ipmatches.conf | File | 1.01 KB | 0644 |
|
| sendmail-whois-lines.conf | File | 1.27 KB | 0644 |
|
| sendmail-whois-matches.conf | File | 1000 B | 0644 |
|
| sendmail-whois.conf | File | 950 B | 0644 |
|
| sendmail.conf | File | 829 B | 0644 |
|
| shorewall-ipset-proto6.conf | File | 3.44 KB | 0644 |
|
| shorewall.conf | File | 2.11 KB | 0644 |
|
| smtp.py | File | 6.13 KB | 0644 |
|
| symbiosis-blacklist-allports.conf | File | 1.47 KB | 0644 |
|
| ufw.conf | File | 2.32 KB | 0644 |
|
| xarf-login-attack.conf | File | 6.29 KB | 0644 |
|