Skip to content

Fail2Ban

Jump to bottom
MrDoobPG edited this page Mar 30, 2019 · 26 revisions

📂 Click Here - Sign up for Google's Suite for Business - Unlimited Space

📂 Click Here - NZB's with from NewsHost - PG Members Receive a 58% Discount



Table of Contents

  1. Intro
  2. Protect your Server
  3. Ban bad IPs-24h
  4. Ban bad IPs-48h
  5. Ban bad IPs-7Days
  6. unban IPs

1. Intro

Fail2Ban is an intrusion prevention software framework that protects computer servers from brute-force attacks. Written in the Python programming language, it is able to run on POSIX systems that have an interface to a packet-control system or firewall installed locally, for example, iptables or TCP Wrapper.

2. Protect your Server

When you install PlexGuide, fail2ban is installed by default. The basic settings are created directly, as well as the service runs with default settings.

Here in this section you will only be told a little bit more about "fail2ban" and some settings how to optimize your "fail2ban-service".

3. Ban bad IPs 24h

PLEASE be careful !!! if you bann your IP you must wait 24h for rejoin the Server.

// only for EXPERT \

  1. cd /etc/fail2ban/
  2. cp jail.conf backup.jail.conf
  3. nano jail.conf

Please ONLY change this ! // change this --> // scroll down // Please ONLY change this !

"bantime" is the number of seconds that a host is banned."

**bantime  = 86400**

"A host is banned if it has generated "maxretry" during the last "findtime"seconds."

**findtime  = 36000**

"maxretry" is the number of failures before a host get banned."

**maxretry = 3**

Please ONLY change this !

short info :

bann time = time for IP bann`s

findtime = the time for find the IP in the log

maxretry = maximal retry before bann the IP

  1. CTRG + X ( then Y )

  2. /etc/init.d/fail2ban restart

  3. cd /var/log/

  4. tail -f fail2ban.log

4. Ban bad IPs 48h

PLEASE be careful !!! if you bann your IP you must wait 24h for rejoin the Server.

// only for EXPERT \

  1. cd /etc/fail2ban/
  2. cp jail.conf backup.jail.conf
  3. nano jail.conf

Please ONLY change this ! // change this --> // scroll down // Please ONLY change this !

* "bantime" is the number of seconds that a host is banned.
bantime  = 172800

* A host is banned if it has generated "maxretry" during the last "findtime" seconds.
findtime  = 86400

* "maxretry" is the number of failures before a host get banned.
maxretry = 3

Please ONLY change this !

  1. CTRG + X ( then Y )

  2. /etc/init.d/fail2ban restart

  3. cd /var/log/

  4. tail -f fail2ban.log

5. Ban bad IPs 7D

PLEASE be careful !!! if you bann your IP you must wait 24h for rejoin the Server.

// only for EXPERT \

  1. cd /etc/fail2ban/
  2. cp jail.conf backup.jail.conf
  3. nano jail.conf

Please ONLY change this ! // change this --> // scroll down // Please ONLY change this !

* "bantime" is the number of seconds that a host is banned.
bantime  = 604800

* A host is banned if it has generated "maxretry" during the last "findtime" seconds.
findtime  = 172800

* "maxretry" is the number of failures before a host get banned.
maxretry = 2

Please ONLY change this !

  1. CTRG + X ( then Y )

  2. /etc/init.d/fail2ban restart

  3. cd /var/log/

  4. tail -f fail2ban.log

6. unban IPs

With Fail2Ban v0.8.8 and later:

fail2ban-client set sshd unbanip IPADDRESSHERE

  1. login over secondary IP ( not banned IP )
  2. fail2ban-client status ( normaly PGuide use this one sshd )
  3. cat /var/log/fail2ban.log
  4. find the IP -> right side are
  5. copy the IP if you want to unban !!! ( own risk )
  6. fail2ban-client set sshd unbanip IPADDRESSHERE
  7. try to login !
  8. if it failed
  9. go back to step 2.)
  10. be careful what IP you want to UNBAN !!

📂 Click Here - NZB's from USENET Server - PG Members Receive a 60% Discount

Home - https://plexguide.com

Installing PlexGuide

  1. PlexGuide Install Information

Preplanning & Information

  1. PG Folder Structure

Domain and Port Control

  1. CloudFlare Tunnel

Primary Applications

  1. Plex

Useful Links

  1. PG YouTube Channel
Clone this wiki locally