20 lines
485 B
Django/Jinja
20 lines
485 B
Django/Jinja
# {{ ansible_managed }}
|
|
[DEFAULT]
|
|
banaction = nftables
|
|
banaction_allports = nftables[type=allports]
|
|
bantime = 1d
|
|
|
|
destemail = fail2ban@{{ matrix_smtp_url }}
|
|
sender = fail2ban@{{ inventory_hostname }}
|
|
# ban & send an e-mail with whois report to the destemail.
|
|
#action = %(action_mw)s
|
|
# to also send relevant log lines
|
|
#action = %(action_mwl)s
|
|
|
|
[sshd]
|
|
enabled = true
|
|
maxretry = 3
|
|
bantime = {{ fail2ban_sshd_bantime | default("1d") }}
|
|
ignoreip = 127.0.0.1/8 {{ fail2ban_sshd_ignoreip }}
|
|
|