commit 780fd2d56fffe17327d879a192f2c8904ca304e6 parent 36ca32c06095708bf9af04ae4e1eff0df8a092fc Author: spacehobo <spacehobo@web> Date: Tue, 12 May 2026 02:05:34 +0200 fail2ban notes Diffstat:
| M | eik.mdwn | | | 7 | +++++++ |
1 file changed, 7 insertions(+), 0 deletions(-)
diff --git a/eik.mdwn b/eik.mdwn @@ -207,6 +207,13 @@ firewall [ufw](https://help.ubuntu.com/community/UFW) is installed as a "frontend" for `iptables`. Defaults are set to allow outgoing and block incoming traffic. Only specific ports are open and allow incoming. +IDS +--- + +We use `fail2ban` to dynamically firewall off IPs that appear to be doing suspicious things based on our logs. If your IP gets banned by mistake, ask someone to find your IP in `sudo fail2ban-client banned` output, figure out which jail you're in, and then do + + fail2ban-client set $JAIL_NAME unbanip $IP_ADDRESS + backups -------