# Fail2ban
Fail2ban allows you to block unsolicited traffic on firewall level saving server resources.
# How does Fail2ban work?
Fail2ban analyzes traffic passing through the web server, and when the execution of certain conditions is noticed, blocks the traffic from the source of IP address.
# Turning on
kctl-Fail2ban enable
1
# Turning off
kctl-Fail2ban disable
1
# Checking status
kctl-Fail2ban status
1
# Configuration
The config setting—up file is located in /etc/keitaro/Fail2ban/keitaro-jail.conf
.
Example of configuration parameters:
maxretry = 3 # The number of requests found to consider the source as the source of unsolicited traffic.
findtime = 60 # The time it takes to search unsolicited traffic, in seconds.
bantime = 600 # The time for which the source of unsolicited traffic is blocked, in seconds.
1
2
3
2
3
← Security Clickhouse →