# Fail2ban

Fail2ban allows you to block unsolicited traffic on firewall level saving server resources.

# How does Fail2ban work?

Fail2ban analyzes traffic passing through the web server, and when the execution of certain conditions is noticed, blocks the traffic from the source of IP address.

# Turning on

kctl-Fail2ban enable
1

# Turning off

kctl-Fail2ban disable
1

# Checking status

kctl-Fail2ban status
1

# Configuration

The config setting—up file is located in /etc/keitaro/Fail2ban/keitaro-jail.conf.

Example of configuration parameters:

maxretry = 3 # The number of requests found to consider the source as the source of unsolicited traffic. 
findtime = 60 # The time it takes to search unsolicited traffic, in seconds.
bantime = 600 # The time for which the source of unsolicited traffic is blocked, in seconds. 
1
2
3