What part of the Fail2Ban configuration is wrong?
Hello,
The SSH part of Fail2ban is as follows: Code:
[sshd] Thank you. |
Quote:
Quote:
|
Try
Code:
logpath = %(sshd_log)s |
IMO you might want to consider allowing connections to SSH from only trusted IP's and BLOCK access to all others
Though this works best where connecting clients are using Static IP's. It's not meant to replace fail2ban's ssh policy, but to act as your first line of defense. |
Quote:
Thank you so much for your reply. When I use logpath = %(sshd_log)s, then when I restart the Fail2Ban service I get the following error message: Quote:
|
Check /etc/fail2ban/
You should have a file named paths-common.conf Make a copy of the file and name it paths-common.local open the file and search for sshd If you don't find sshd_log add: Code:
sshd_log = %(syslog_authpriv)s Code:
sshd_backend = %(default_backend)s Ken |
Quote:
Thank you so much for your reply. After this I restarted the Fail2Ban service and got the following errors: Code:
[715]: ERROR Failed during configuration: Have not found any log file for sshd jail |
All times are GMT -5. The time now is 08:24 PM. |