|
Title: Snort and fail2ban, iptables Post by: samuel on Tuesday 07 November 2023, 09:10:29 pm Hello. I started fail2ban, configured filter.d for snort. Filter.d
[Definition] failregex = .*snort.*Priority: 1.*} <HOST>.* # .*snort.*Priority: 2.*} <HOST>.* I have configured jail.local Although fail2ban bans ip, iptables doesn't ban those apis, I still see them active. How could I add this rule in iptables to block ips banned by fail2ban? Thank you ! |