thomas
/
sovereign
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

add(fail2ban): Add server IP address to ignore IP 

ignoreip field inside /etc/fail2ban/jail.local is populated with
server_ip_address variable
Bertrand Cachet 10 years ago
parent
a9cabad947
commit
df802919f7
2 changed files with 2 additions and 1 deletions
Split View Show Diff Stats
  1. 1
    1
      roles/common/templates/etc_fail2ban_jail.local.j2
  2. 1
    0
      vars/defaults.yml

+ 1
- 1
roles/common/templates/etc_fail2ban_jail.local.j2 View File 

@@ -1,5 +1,5 @@
1 1 
 [DEFAULT]
2 
-ignoreip  = 127.0.0.1 TODO(server IP address)
2 
+ignoreip  = 127.0.0.1 {{ server_ip_address }}
3 3 
 bantime   = 86400
4 4 
 destemail = {{ admin_email }}
5 5 
 banaction = iptables-multiport

+ 1
- 0
vars/defaults.yml View File 

@@ -11,6 +11,7 @@
11 11 
 # main_user_name: TODO
12 12 
 # admin_email: TODO@TODO.com
13 13 
 # encfs_password: TODO
14 
+# server_ip_address: TODO
14 15
15 16 
 # ircbouncer
16 17 
 znc_version: 1.0

Write Preview
Loading…
Cancel
Save