thomas
/
sovereign
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

add(fail2ban): Add server IP address to ignore IP 

ignoreip field inside /etc/fail2ban/jail.local is populated with
server_ip_address variable
Bertrand Cachet 11 years ago
parent
a9cabad947
commit
df802919f7
2 changed files with 2 additions and 1 deletions
Unified View Show Diff Stats
  1. 1
    1
      roles/common/templates/etc_fail2ban_jail.local.j2
  2. 1
    0
      vars/defaults.yml

+ 1
- 1
roles/common/templates/etc_fail2ban_jail.local.j2 View File

1 
 [DEFAULT]
 1 
 [DEFAULT]
2 
-ignoreip  = 127.0.0.1 TODO(server IP address)
2 
+ignoreip  = 127.0.0.1 {{ server_ip_address }}
3 
 bantime   = 86400
 3 
 bantime   = 86400
4 
 destemail = {{ admin_email }}
 4 
 destemail = {{ admin_email }}
5 
 banaction = iptables-multiport
 5 
 banaction = iptables-multiport

+ 1
- 0
vars/defaults.yml View File

11 
 # main_user_name: TODO
 11 
 # main_user_name: TODO
12 
 # admin_email: TODO@TODO.com
 12 
 # admin_email: TODO@TODO.com
13 
 # encfs_password: TODO
 13 
 # encfs_password: TODO
14 
+# server_ip_address: TODO
14
15
15 
 # ircbouncer
 16 
 # ircbouncer
16 
 znc_version: 1.0
 17 
 znc_version: 1.0

Write Preview
Loading…
Cancel
Save