forked from norman/fusionpbx-install.sh-github-mirror
Update jail.local
Set the fail2ban to block only web interface for failed authentication attempts.
This commit is contained in:
FusionPBX
4
debian/resources/fail2ban/jail.local
vendored
4
debian/resources/fail2ban/jail.local
vendored
@@ -38,9 +38,9 @@ port = 80,443
|
|||||||
protocol = tcp
|
protocol = tcp
|
||||||
filter = fusionpbx
|
filter = fusionpbx
|
||||||
logpath = /var/log/auth.log
|
logpath = /var/log/auth.log
|
||||||
action = iptables-allports[name=fusionpbx, protocol=all]
|
action = iptables-multiport[name=fusionpbx, port="http,https", protocol=tcp]
|
||||||
# sendmail-whois[name=fusionpbx, dest=root, sender=fail2ban@example.org] #no smtp server installed
|
# sendmail-whois[name=fusionpbx, dest=root, sender=fail2ban@example.org] #no smtp server installed
|
||||||
maxretry = 5
|
maxretry = 10
|
||||||
findtime = 600
|
findtime = 600
|
||||||
bantime = 600
|
bantime = 600
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user