Browse Source

add(fail2ban): Add server IP address to ignore IP

ignoreip field inside /etc/fail2ban/jail.local is populated with
server_ip_address variable
Bertrand Cachet 11 years ago
parent
commit
df802919f7
2 changed files with 2 additions and 1 deletions
  1. 1
    1
      roles/common/templates/etc_fail2ban_jail.local.j2
  2. 1
    0
      vars/defaults.yml

+ 1
- 1
roles/common/templates/etc_fail2ban_jail.local.j2 View File

@@ -1,5 +1,5 @@
1 1
 [DEFAULT]
2
-ignoreip  = 127.0.0.1 TODO(server IP address)
2
+ignoreip  = 127.0.0.1 {{ server_ip_address }}
3 3
 bantime   = 86400
4 4
 destemail = {{ admin_email }}
5 5
 banaction = iptables-multiport

+ 1
- 0
vars/defaults.yml View File

@@ -11,6 +11,7 @@
11 11
 # main_user_name: TODO
12 12
 # admin_email: TODO@TODO.com
13 13
 # encfs_password: TODO
14
+# server_ip_address: TODO
14 15
 
15 16
 # ircbouncer
16 17
 znc_version: 1.0

Loading…
Cancel
Save