From owner-freebsd-questions@freebsd.org Fri Apr 14 02:44:20 2017 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1115CD3DB02; Fri, 14 Apr 2017 02:44:20 +0000 (UTC) (envelope-from rizzo@i805.com.br) Received: from server.i805.com.br (mailhost.i805.com.br [50.7.9.75]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "fbsd10.amd64", Issuer "fbsd10.amd64" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id D86E4150C; Fri, 14 Apr 2017 02:44:19 +0000 (UTC) (envelope-from rizzo@i805.com.br) Received: from server.i805.com.br (localhost [127.0.0.1]) by server.i805.com.br (8.15.2/8.15.2) with ESMTPS id v3E2i5AO070204 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Thu, 13 Apr 2017 23:44:06 -0300 (BRT) (envelope-from rizzo@i805.com.br) Received: (from www@localhost) by server.i805.com.br (8.15.2/8.15.2/Submit) id v3E2i5um070203; Thu, 13 Apr 2017 23:44:05 -0300 (BRT) (envelope-from rizzo@i805.com.br) X-Authentication-Warning: server.i805.com.br: www set sender to rizzo@i805.com.br using -f To: David Mehler Subject: Re: fail2ban banning me X-PHP-Script: www.i805.com.br/roundcube/index.php for 186.221.219.53 X-PHP-Originating-Script: 80:rcube.php MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit Date: Thu, 13 Apr 2017 23:44:04 -0300 From: =?UTF-8?Q?Nilton_Jos=C3=A9_Rizzo?= Cc: freebsd-questions , owner-freebsd-questions@freebsd.org In-Reply-To: References: Message-ID: <78fe8ffaa2ae76757e0f02b527cca2eb@i805.com.br> X-Sender: rizzo@i805.com.br User-Agent: Roundcube Webmail/1.2.3 X-Spam-Status: No, score=-1.0 required=5.0 tests=ALL_TRUSTED,URIBL_BLOCKED autolearn=unavailable autolearn_force=no version=3.4.1 X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on server.i805.com.br X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Apr 2017 02:44:20 -0000 Em 2017-04-13 19:36, David Mehler escreveu: > Hello, > > I've got fail2ban going with pf on a 10.3 system. I am now starting to > have instances of being locked out and the only way to get back in is > to do an out of banned connection via my vps. > > For some reason over the past two days fail2ban is banning my remotely > connecting ip address, which is dynamic. > > Fail2ban has also banned the system's local external ip address for > example 1.2.3.4 I had added that specific address to the ignoreip line > in jail.local. > > Any ideas? > > Thanks. > Dave > PS, if anyone else is using fail2ban with pf on a 10.x or 11.x system > i'd like to see your jail configurations and compare them to my own. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" hi David I'm using fail2ban with ipfw look my jail.local [DEFAULT] rulenum=15000 host=me ports = [22, 25, 53, 80, 443, 3306, 9000] protocol=ip banaction = bsd-ipfw bantime = 86400 ; 60s * 60m * 24h maxretry = 3 [sshd] enabled = true [courier-auth] enabled = true and work fine -- ******************************************************** * Nilton José Rizzo Sistema de Informação UFRRJ * * http://cursos.ufrrj.br/grad/sistemas/ * * lattes:http://lattes.cnpq.br/0079460703536198 * ********************************************************