"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "config/action.d/iptables-multiport-log.conf" between
fail2ban-0.10.3.1.tar.gz and fail2ban-0.10.4.tar.gz

About: fail2ban scans log files and bans (via firewall rules) IP-addresses that makes too many access failures. It updates firewall rules to reject the IP address. Experimental version.

iptables-multiport-log.conf  (fail2ban-0.10.3.1):iptables-multiport-log.conf  (fail2ban-0.10.4)
skipping to change at line 19 skipping to change at line 19
# #
# #
[INCLUDES] [INCLUDES]
before = iptables-common.conf before = iptables-common.conf
[Definition] [Definition]
# Option: actionstart # Option: actionstart
# Notes.: command executed once at the start of Fail2Ban. # Notes.: command executed on demand at the first ban (or at the start of Fail2 Ban if actionstart_on_demand is set to false).
# Values: CMD # Values: CMD
# #
actionstart = <iptables> -N f2b-<name> actionstart = <iptables> -N f2b-<name>
<iptables> -A f2b-<name> -j <returntype> <iptables> -A f2b-<name> -j <returntype>
<iptables> -I <chain> 1 -p <protocol> -m multiport --dports <port> -j f2b-<name> <iptables> -I <chain> 1 -p <protocol> -m multiport --dports <port> -j f2b-<name>
<iptables> -N f2b-<name>-log <iptables> -N f2b-<name>-log
<iptables> -I f2b-<name>-log -j LOG --log-prefix "$(expr f2b-<name > : '\(.\{1,23\}\)'):DROP " --log-level warning -m limit --limit 6/m --limit-bur st 2 <iptables> -I f2b-<name>-log -j LOG --log-prefix "$(expr f2b-<name > : '\(.\{1,23\}\)'):DROP " --log-level warning -m limit --limit 6/m --limit-bur st 2
<iptables> -A f2b-<name>-log -j <blocktype> <iptables> -A f2b-<name>-log -j <blocktype>
# Option: actionflush # Option: actionflush
# Notes.: command executed once to flush IPS, by shutdown (resp. by stop of the jail or this action) # Notes.: command executed once to flush IPS, by shutdown (resp. by stop of the jail or this action)
# Values: CMD # Values: CMD
# #
actionflush = <iptables> -F f2b-<name> actionflush = <iptables> -F f2b-<name>
<iptables> -F f2b-<name>-log <iptables> -F f2b-<name>-log
# Option: actionstop # Option: actionstop
# Notes.: command executed once at the end of Fail2Ban # Notes.: command executed at the stop of jail (or at the end of Fail2Ban)
# Values: CMD # Values: CMD
# #
actionstop = <iptables> -D <chain> -p <protocol> -m multiport --dports <port> -j f2b-<name> actionstop = <iptables> -D <chain> -p <protocol> -m multiport --dports <port> -j f2b-<name>
<actionflush> <actionflush>
<iptables> -X f2b-<name> <iptables> -X f2b-<name>
<iptables> -X f2b-<name>-log <iptables> -X f2b-<name>-log
# Option: actioncheck # Option: actioncheck
# Notes.: command executed once before each actionban command # Notes.: command executed once before each actionban command
# Values: CMD # Values: CMD
 End of changes. 2 change blocks. 
2 lines changed or deleted 2 lines changed or added

Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)