Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > General
Reload this Page IPTables and ISPConfig
Register FAQ Members List Social Groups Calendar Search Today's Posts Mark Forums Read

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 30th September 2010, 06:55
Mosquito Mosquito is offline
Member
  
Join Date: Nov 2006
Posts: 85
Thanks: 5
Thanked 4 Times in 3 Posts
Default IPTables and ISPConfig
I've got a script that works with Fail2Ban to block repeat offenders via IPTable rules. I'd like to get this working with ISPconfig, but I can't figure out how it determines when to write IPTable rules. Is this information stored in the DB somewhere?
Reply With Quote
Sponsored Links
  #2  
Old 1st October 2010, 15:51
falko falko is offline
Super Moderator
  
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,685
Thanks: 1,899
Thanked 2,601 Times in 2,450 Posts
Default
I don't understand why you want to integrate this into ISPConfig when this script works with fail2ban?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #3  
Old 4th October 2010, 14:19
Mosquito Mosquito is offline
Member
  
Join Date: Nov 2006
Posts: 85
Thanks: 5
Thanked 4 Times in 3 Posts
Default
I am working on preventing persistent attackers from returning. Right now fail2ban will ban for a set period of time and then unban them. I could increase the time of the ban, but that would affect legitimate users that are bad typists. The other issue is that fail2ban rules get cleared if the server is restarted. Granted, this doesn't happen frequently, but I'd prefer a way to automatically add back in the IP addresses that I've deemed 'dangerous' because of their continued attempts to log in via brute force.

What I am currently doing is storing all IP addresses that trigger a fail2ban jail. I can automatically add them to IPTables, but if I do that ISPConfig comes along a short time later and makes it own changes wiping out the changes my script just made. I'd like to be able to integrate with ISPConfig in this regard, but I am not sure where it stores it's rules for what to allow.
Reply With Quote
  #4  
Old 4th October 2010, 15:02
till till is offline
Super Moderator
  
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 32,071
Thanks: 697
Thanked 4,250 Times in 3,263 Posts
 
Default
Pleae see this thread:

http://www.howtoforge.com/forums/showthread.php?t=6209

The method described there for ispconfig 2 should work with ispconfig 3 as well.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
Reply

Bookmarks

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
ISPConfig and IPTABLES - Trash Automatic Setting?? vaio1 Installation/Configuration 4 22nd January 2010 19:30
Iptables, bastille, ISPConfig setup papokergod Installation/Configuration 17 1st February 2009 13:31
ispconfig is killing external iptables supertom64 Installation/Configuration 4 15th February 2007 09:01
ISPConfig firewall and iptables help !!! iovo General 1 16th November 2006 15:52
Running ISPConfig on a vserver? tron Installation/Configuration 4 8th December 2005 10:35


All times are GMT +2. The time now is 10:35.

Contact Us - HowtoForge - Linux Howtos and Tutorials - Archive - Top

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2013, vBulletin Solutions, Inc.