Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > General

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 30th September 2010, 07:55
Mosquito Mosquito is offline
Member
 
Join Date: Nov 2006
Posts: 85
Thanks: 5
Thanked 6 Times in 5 Posts
Default IPTables and ISPConfig

I've got a script that works with Fail2Ban to block repeat offenders via IPTable rules. I'd like to get this working with ISPconfig, but I can't figure out how it determines when to write IPTable rules. Is this information stored in the DB somewhere?
Reply With Quote
Sponsored Links
  #2  
Old 1st October 2010, 16:51
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,752 Times in 2,582 Posts
Default

I don't understand why you want to integrate this into ISPConfig when this script works with fail2ban?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #3  
Old 4th October 2010, 15:19
Mosquito Mosquito is offline
Member
 
Join Date: Nov 2006
Posts: 85
Thanks: 5
Thanked 6 Times in 5 Posts
Default

I am working on preventing persistent attackers from returning. Right now fail2ban will ban for a set period of time and then unban them. I could increase the time of the ban, but that would affect legitimate users that are bad typists. The other issue is that fail2ban rules get cleared if the server is restarted. Granted, this doesn't happen frequently, but I'd prefer a way to automatically add back in the IP addresses that I've deemed 'dangerous' because of their continued attempts to log in via brute force.

What I am currently doing is storing all IP addresses that trigger a fail2ban jail. I can automatically add them to IPTables, but if I do that ISPConfig comes along a short time later and makes it own changes wiping out the changes my script just made. I'd like to be able to integrate with ISPConfig in this regard, but I am not sure where it stores it's rules for what to allow.
Reply With Quote
  #4  
Old 4th October 2010, 16:02
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lneburg, Germany
Posts: 37,045
Thanks: 841
Thanked 5,661 Times in 4,468 Posts
 
Default

Pleae see this thread:

http://www.howtoforge.com/forums/showthread.php?t=6209

The method described there for ispconfig 2 should work with ispconfig 3 as well.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
ISPConfig and IPTABLES - Trash Automatic Setting?? vaio1 Installation/Configuration 4 22nd January 2010 20:30
Iptables, bastille, ISPConfig setup papokergod Installation/Configuration 17 1st February 2009 14:31
ispconfig is killing external iptables supertom64 Installation/Configuration 4 15th February 2007 10:01
ISPConfig firewall and iptables help !!! iovo General 1 16th November 2006 16:52
Running ISPConfig on a vserver? tron Installation/Configuration 4 8th December 2005 11:35


All times are GMT +2. The time now is 22:12.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.