hi ho,
ich weiß das es hier eigentlich nicht her gehört, aber evtl. kann ja doch jemmand helfen. hab fail2ban nach der howto eingerichtet. im log von fail2ban steht allerdings nun folgendes:
Code:
2008-01-24 11:03:26,013 fail2ban.actions.action: INFO Set actionStart = iptables -N fail2ban-<name>
iptables -A fail2ban-<name> -j RETURN
iptables -I INPUT -p <protocol> --dport <port> -j fail2ban-<name>
2008-01-24 11:03:26,014 fail2ban.actions.action: INFO Set actionUnban = iptables -D fail2ban-<name> -s <ip> -j DROP
2008-01-24 11:03:26,015 fail2ban.actions.action: INFO Set actionCheck = iptables -n -L INPUT | grep -q fail2ban-<name>
2008-01-24 11:03:27,577 fail2ban.actions.action: ERROR iptables -N fail2ban-apache
iptables -A fail2ban-apache -j RETURN
iptables -I INPUT -p tcp --dport http -j fail2ban-apache returned 200
2008-01-24 11:03:27,620 fail2ban.actions.action: ERROR iptables -N fail2ban-couriersmtp
iptables -A fail2ban-couriersmtp -j RETURN
iptables -I INPUT -p tcp --dport smtp -j fail2ban-couriersmtp returned 400
2008-01-24 11:03:27,622 fail2ban.actions.action: ERROR iptables -N fail2ban-proftpd
iptables -A fail2ban-proftpd -j RETURN
iptables -I INPUT -p tcp --dport ftp -j fail2ban-proftpd returned 400
2008-01-24 11:03:27,623 fail2ban.actions.action: ERROR iptables -N fail2ban-apache-noscript
iptables -A fail2ban-apache-noscript -j RETURN
iptables -I INPUT -p tcp --dport http -j fail2ban-apache-noscript returned 400
2008-01-24 11:03:27,623 fail2ban.actions.action: ERROR iptables -N fail2ban-sasl
iptables -A fail2ban-sasl -j RETURN
iptables -I INPUT -p tcp --dport smtp -j fail2ban-sasl returned 400
2008-01-24 11:03:27,629 fail2ban.actions.action: ERROR iptables -N fail2ban-postfix
iptables -A fail2ban-postfix -j RETURN
iptables -I INPUT -p tcp --dport smtp -j fail2ban-postfix returned 400
Code:
~# apt-get install iptables
Reading package lists... Done
Building dependency tree... Done
iptables is already the newest version.
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
weiß nicht so recht woran es liegen könnte, da ich mich mit iptables nie bisher groß beschäftigt hab.
danke für eure tips
grüße
sebastian