Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #11  
Old 16th July 2009, 19:28
escu escu is offline
Junior Member
 
Join Date: Jul 2009
Posts: 7
Thanks: 0
Thanked 2 Times in 1 Post
Default

How about that fail2ban problem? My server also reports it as not installed, although I have installed it. CentOS 5.3 here, too.

Later edit: sorry for this post, I found the answer: fail2ban must be configured separately.
I added the following for pure-ftpd and activated also the sshd in jail file
Code:
[pure-ftpd-iptables]

enabled  = true
filter   = pure-ftpd
action   = iptables[name=PureFTP, port=ftp, protocol=tcp]
           sendmail-whois[name=PureFTP, dest=root@mydomain.tld, sender=fail2ban@mydomain.tld]
logpath  = /var/log/pureftpd.log
maxretry = 5
Hope it is correct; I'm waiting to see some results, as there are already some guys trying to connect by ftp

Last edited by escu; 16th July 2009 at 20:32.
Reply With Quote
Sponsored Links
  #12  
Old 16th July 2009, 21:19
Stown Stown is offline
Member
 
Join Date: Jun 2009
Location: Limburg, NL
Posts: 83
Thanks: 12
Thanked 5 Times in 5 Posts
Send a message via Skype™ to Stown
Default

How do you mean fail2ban must configured seperately? What do i have to configure to make it work with ispconfig? I have centos 5.3 too..
Reply With Quote
  #13  
Old 16th July 2009, 21:45
escu escu is offline
Junior Member
 
Join Date: Jul 2009
Posts: 7
Thanks: 0
Thanked 2 Times in 1 Post
 
Default

Simple: after everything is working, go to /etc/fail2ban

Here, open jail.conf in your favorite editor. Find the entry:

Code:
[ssh-iptables]

enabled  = false
filter   = sshd
action   = iptables[name=SSH, port=ssh, protocol=tcp]
           sendmail-whois[name=SSH, dest=root@server1.icsys.ro, sender=fail2ban@icsys.ro]
logpath  = /var/log/sshd.log
maxretry = 5
and change enable = false to enable = true for SSH. Do the same for the other services you wish to protect, as well. Also add the entry I posted in the previous message, for pure-ftpd.

After saving the file, give the command service fail2ban restart then check the logs in IPConfig.
Reply With Quote
The Following 2 Users Say Thank You to escu For This Useful Post:
cobro (17th July 2009), Stown (16th July 2009)
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Loads of mysql connections to dbispconfig StrikerNL General 2 5th March 2009 14:31
ISPConfig installation into multiple OpenVZ containers letezo Installation/Configuration 11 3rd March 2009 22:47
64bit ISPConfig / Perfect Setup CentOS 5 wpwood3 General 5 3rd December 2007 02:11
Webmail Relay Error palkat General 17 23rd April 2006 18:12
Problem installing ISPConfig, then with MySQL... ctroyp Installation/Configuration 7 26th September 2005 16:37


All times are GMT +2. The time now is 13:09.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.