A follow-up as to whether or not it is possible un-ban an IP address, manually, in fail2ban: the short answer is, "No."
I'm not sure how drewb0y was able to un-ban an IP address, manually, with the command he cited, because according to an authoritative source (Yaroslav Halchenko), "actionunban" does not work that way (which explains why I received "Invalid command" errors).
From Yaroslav's response to my mailing-list inquiry:
Quote:
actionunban specifies the command for the action, .e.g like in a config
file -- it is not to call it, e.g. like it would be 'unbanip' command to
supplement 'banip'
in those rare cases I need to do it I just iptables -D it manually
but it is a valid feature request -- feel free to submit an issue on
github
|
So, there you have it, folks. As of fail2ban 0.8.6:
a.) The recommended means by which to un-ban individual IP addresses is to use the "iptables -D" command.
b.) There is a chance that if fail2ban is restarted after removing the rule, the rule will be re-added to iptables. (This will occur if "your original scanned logs still happen to have those entries within findtime from now".)
English | 
Deutsch
Threaded Mode
Recent comments
8 hours 53 min ago
9 hours 53 min ago
13 hours 40 min ago
14 hours 54 min ago
18 hours 30 min ago
1 day 1 hour ago
1 day 10 hours ago
1 day 12 hours ago
2 days 3 hours ago
2 days 5 hours ago