I am following this how-to to install fail2ban on debian ecth.
but modified it to work on CentOS.
It is working:
[root@webserver action.d]# fail2ban-client status ssh
Status for the jail: ssh
| |- Currently failed: 0
| `- Total failed: 11
|- Currently banned: 0
| `- IP list:
`- Total banned: 3
My question is that there appears to be some type of email configuration that if a user gets banned it sends an email to the attacker. I don't know if i have that working or how that is configured.
the file /etc/fail2ban/action.d/mail.conf