Ubuntu
fail2ban package

integration with ufw

Bug #701522 reported by Guilhem Lettron
16
This bug affects 2 people
Affects Status Importance Assigned to Milestone
fail2ban (Ubuntu)
Confirmed
Wishlist
Unassigned

Bug Description

Binary package hint: fail2ban

To use fail2ban with ufw, we can use this action (attached).

All is centralized and under control :)

Note : I don't have edit "actionstart", it can be "ufw enable" ... but I will let admsys do that.

Revision history for this message
Guilhem Lettron (guilhem-fr) wrote :
Daniel T Chen (crimsun)
Changed in fail2ban (Ubuntu):
importance: Undecided → Wishlist
status: New → Confirmed
Revision history for this message
Alexandr (olexandr-dmitriev) wrote :

Yes! It will be a killing feature!

But the dream variant would be if ufw can block per ports/application also!

Revision history for this message
Daniel Black (daniel-black) wrote :

https://github.com/fail2ban/fail2ban/issues/455

Revision history for this message
Daniel Black (daniel-black) wrote :

Folks,

I've done a version for upstream fail2ban here: https://github.com/fail2ban/fail2ban/pull/489

It includes optional application support (but not ports - adding ports would removed the simplicity of ufw in a way).

Questions:

Is 1 a sane default for insertpos? I choose it because it is likely to work on a users set up that only run ufw enable.

Any other recommended changes?

Does it work (I haven't extensively tested it)?

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Bug attachments

Remote bug watches

Bug watches keep track of this bug in other bug trackers.