View Single Post
  #14  
Old 3rd March 2013, 08:11
manarak manarak is offline
Senior Member
 
Join Date: Apr 2009
Posts: 263
Thanks: 32
Thanked 6 Times in 5 Posts
Default

Quote:
Originally Posted by manarak View Post
another observation:
if you install a vserver: these usually don't allow access to IPTABLES, since they are built into the kernel that is common to all vservers on the host.
So your fail2ban is going to be ineffective in the default config.

solution: use hosts.deny instead.

to do this:
in jail.conf
change
banaction = iptables-multiport
into
banaction = hostsdeny
save and restart fail2ban
I realized later that hosts.deny is not a good solution. see here why:
http://www.howtoforge.com/forums/sho...d.php?p=293131
Reply With Quote