fail2ban 설치

fail2ban 설치

dnf install https://dl.fedoraproject.org/pub/epel/epel-release-latest-8.noarch.rpm
dnf install fail2ban

cp jail.conf jail.local
vi /etc/fail2ban/jail.local

[DEFAULT]
ignoreip = 192.168.0.2/24
bantime  = 604800
findtime  = 180
maxretry = 3
banaction = iptables-multiport
backend = systemd

[sshd]
enabled = true

systemctl start fail2ban
systemctl enable fail2ban
systemctl status fail2ban

fail2ban-client status sshd