Domino on Linux/Unix, Troubleshooting, Best Practices, Tips and more ...

alt

Daniel Nashed

Fail2Ban for Domino now also works with UFW on Ubuntu

Daniel Nashed – 23 September 2024 06:19:12

Just realized I forgot to add Fail2Ban to my servers when moving from CentOS to Ubuntu.
The configuration is a bit different and uses Ubuntu UFW instead of Firewalld.


I pushed it out to the develop branch first and updated the documentation.


https://nashcom.github.io/domino-startscript/fail2ban/

The domban install command does now detect the distribution and will perform the configuration steps including jail.local setup for both distribution types now.


Fail2Ban is a great way to protect your server on SSH and Domino protocols.


-- Daniel



Comments

1Sven Hasselbach  27.09.2024 8:43:12  Fail2Ban for Domino now also works with UFW on Ubuntu

Keep in mind that you also need to adjust bantime, findtime and maxretry in jail.local.

The default settings are taken into account in common scan scripts.

For me, a find time with 60m, a ban time of 30m and maxretry 3 has reduced a lot of attacks.

And don't forget the recedive jail :-)

Links

    Archives


    • [HCL Domino]
    • [Domino on Linux]
    • [Nash!Com]
    • [Daniel Nashed]