You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
84 lines
1.5 KiB
84 lines
1.5 KiB
[DEFAULT]
|
|
|
|
ignoreip = 127.0.0.1/8 IP
|
|
bantime = 3600
|
|
findtime = 3600
|
|
#mta = mail
|
|
#destemail =
|
|
#sendername = Fail2BanAlerts
|
|
#action = %(action_mwl)s
|
|
|
|
[nginx-http-auth]
|
|
|
|
enabled = true
|
|
filter = nginx-http-auth
|
|
port = http,https
|
|
logpath = /var/log/nginx/*error.log
|
|
bantime = 259200
|
|
|
|
#[nginx-badbots]
|
|
|
|
#enabled = true
|
|
#port = http,https
|
|
#filter = nginx-badbots
|
|
#logpath = /var/log/nginx/access.log
|
|
#maxretry = 2
|
|
|
|
[nginx-badbots]
|
|
|
|
enabled = true
|
|
port = http,https
|
|
filter = nginx-badbots
|
|
failregex = ^<HOST> -.*"(GET|POST|HEAD).*HTTP.*" 437
|
|
#ignoreregex =
|
|
backend = auto
|
|
logpath = /var/log/nginx/*access.log
|
|
bantime = 259200
|
|
maxretry= 1
|
|
|
|
[nginx-nohome]
|
|
|
|
enabled = true
|
|
port = http,https
|
|
filter = nginx-nohome
|
|
logpath = /var/log/nginx/*access.log
|
|
bantime = 259200
|
|
maxretry = 2
|
|
|
|
[nginx-noproxy]
|
|
|
|
enabled = true
|
|
port = http,https
|
|
filter = nginx-noproxy
|
|
logpath = /var/log/nginx/*access.log
|
|
bantime = 259200
|
|
maxretry = 2
|
|
|
|
[nginx-req-limit]
|
|
|
|
enabled = true
|
|
filter = nginx-req-limit
|
|
action = iptables-multiport[name=ReqLimit, port="http,https", protocol=tcp]
|
|
logpath = /var/log/nginx/*error.log
|
|
findtime = 600
|
|
bantime = 259200
|
|
maxretry = 10
|
|
|
|
[nginx-conn-limit]
|
|
|
|
enabled = true
|
|
filter = nginx-conn-limit
|
|
action = iptables-multiport[name=ConnLimit, port="http,https", protocol=tcp]
|
|
logpath = /var/log/nginx/*error.log
|
|
findtime = 300
|
|
bantime = 259200
|
|
maxretry = 100
|
|
|
|
[ssh]
|
|
|
|
enabled = true
|
|
port = SSH_PORT
|
|
filter = sshd
|
|
logpath = /var/log/auth.log
|
|
maxretry = 3
|
|
bantime = -1 |