Overview

The system Security settings control fail2ban.  Configuration can be found in System -> Security.

 

Settings

The Settings Page (System -> Security -> Settings) allows the administrator to set defaults across all of the fail2ban rules.

 

 

Unmanaged Security service

If checked this allows the administrator to write his or her own fail2ban rules.

Ignore IPs

Sets specific IP addresses or IP address ranges that fail2ban will ignore.

Ban Time

The number of seconds that a host will be banned.  Setting this to -1 will ban an IP address until IPTables restart.

Max Retry

The number of times a fail2ban rule is hit before a host gets banned.

Find Time

The time period over which "Max Retry" is evaluated.

SIP Security

The following are the fail2ban rules that are enabled in the system.  For each of the rules logging of the specific messages must be enabled in the firewall settings page.

 

 

Enable Rule

Enables this specific fail2ban rule.

Ignore IPs

Sets specific IP addresses or IP address ranges that fail2ban will ignore.

Ban Time

The number of seconds that a host will be banned.  Setting this to -1 will ban an IP address until IPTables restart.

Max Retry

The number of times a fail2ban rule is hit before a host gets banned.

Find Time

The time period over which "Max Retry" is evaluated.

Send eMail

Enables sending of eMail when this particular fail2ban rule is hit.

eMail To

The email address to send fail2ban notifications to.