search

mitchellkrogza / Fail2Ban-Blacklist-JAIL-for-Repeat-Offenders-with-Perma-Extended-Banning

A customised jail with action and filter file for Fail2Ban. This jail is based on the recidive jail but makes use of a simple text file to enable extended and permanent bans.
150 stars 39 forks source link

empty /etc/fail2ban/ip.blacklist #1

Closed latimeria68 closed 7 years ago

latimeria68 commented 7 years ago

Hello, I know you have tested your jail on Fail2ban 0.9.1, I just want to report that with version 0.9.6 ip.blacklist file remains empty after max retry attempts are reached 2017-03-22 19:18:06,519 fail2ban.filter [914]: INFO [apache] Found 10.64.64.64 2017-03-22 19:18:09,536 fail2ban.filter [914]: INFO [apache] Found 10.64.64.64 2017-03-22 19:18:12,552 fail2ban.filter [914]: INFO [apache] Found 10.64.64.64 2017-03-22 19:18:13,287 fail2ban.actions [914]: NOTICE [apache] Ban 10.64.64.64 2017-03-22 19:18:13,425 fail2ban.filter [914]: INFO [blacklist] Found 10.64.64.64

mitchellkrogza commented 7 years ago

Did you make the ip.blacklist file writeable?

Try chmod 755 /etc/fail2ban/ip.blacklist and make sure that the file is owned by root:root

after that restart fail2ban and let me know as I do use this on 0.9.6 too and it works ok.

mitchellkrogza commented 7 years ago

Have updated Readme with better setup instructions: https://github.com/mitchellkrogza/Fail2Ban-Blacklist-JAIL-for-Repeat-Offenders-with-Perma-Extended-Banning/blob/master/README.md

latimeria68 commented 7 years ago

yes, now working fail2ban 0.9.6 on Raspbian Jessie thanks a lot