Samuel Stanislav
Reputation: 31
fail2ban repeatedly sends notifications
we re facing issue with fail2ban.
Our setup for example:
jail.conf:
[nginx-404]
enabled = true
port = http,https
filter = nginx-404
logpath = /var/log/nginx/*access.log
maxretry = 5
findtime = 300
action = mail
than action:
[Definition]
actionstart =
actionstop =
actioncheck =
actionban = printf %%b "Hi,\n
The IP <ip> has just been banned by Fail2Ban after
<failures> attempts against <name>.\n
Regards,\n
Fail2Ban"|mail -s "[Fail2Ban] <name>: banned <ip> from `uname -n`" <dest>
actionunban =
After restart service or reboot system. It send immediately all bans which were done before.
Is there any solution to stop sending hundreds notifications after restart ? Thanks for anyadvice.
Upvotes: 0
Views: 286
Answers (1)
Related Questions
- How to use fail2ban for Nginx error "Primary script unknown"
- Understanding fail2ban test output when running fail2ban-regex on Nginx
- How to use fail2ban with Meteor on Nginx
- Fail2ban no matches for nginx-botsearch
- fail2ban regular to find 403 request in nginx
- fail2ban scan for 403 in nginx access logs
- Web crawlers overloading site
- Fail2ban for nginx post flood ignores time intervals
- fail2ban frequently bans me from WordPress admin due to noscript nginx
- Fail2Ban unbans after 10 minutes. bantime none warning?