Is it possible to set the maxretry parameter of a fail2ban filter to 0 so that every IP will be banned instantly? The client does not complain about this setting but it does not seem to ban IPs either. So I just wanted to ask whether this actually works.
Asked
Active
Viewed 2,488 times
6
herhuf
- 497
- 3
- 17
-
No, I want to ban someone who already got banned before because of attempted exploitation - But then instantly and for a longer time. – herhuf Oct 16 '17 at 18:29
-
For that, you should set a permanent iptable rule on his/her IP if it is ifxed – OscarAkaElvis Oct 24 '17 at 14:15
-
I think it's a good question. After all, the name of the parameter is "maxretry", not "maxtry". For me it sounds reasonable that the first try is the zeroth retry. – tobixen Oct 26 '21 at 13:40
1 Answers
2
If you define maxretry with 1, after first attempt fail2ban ban the ip instantly. Before of first attempt is impossible(logical)
NoOk
- 56
- 8