Seorang Teknisi Jaringan yang pernah berkecimpung di Internet Service Provider (ISP) dan akhirnya memutuskan diri untuk menjadi freelancer yang berdomisili di Solo, Surakarta Hadiningrat.
Melayani jasa pasang Internet berbasis Wireless maupun Fiber Optic, Jasa Pasang Tower/Pipa, Pointing Wireless, Setting Router, CCTV, Hotspot, Proxy, Web Server, Network Managed dan Monitoring
Berbagai saran, kritikan, keluhan dan masukan akan sangat berarti bagi saya. Anda dapat menghubungi/whatsapp saya di nomor:08564-212-8686 atau melalui BBM:2128686
:: Tutorial install fail2ban ::
#> tujuan : mengamankan server dari bruteforce ssh
/etc/init.d/fail2ban restart
untuk monitor :
#> tujuan : mengamankan server dari bruteforce ssh
apt install fail2ban -y
nano /etc/fail2ban/jail.local[DEFAULT]
# "ignoreip" can be an IP address, a CIDR mask or a DNS host. Fail2ban will not
# ban a host which matches an address in this list. Several addresses can be
# defined using space separator.
ignoreip = 127.0.0.1
# "bantime" is the number of seconds that a host is banned.
bantime = 600
# A host is banned if it has generated "maxretry" during the last "findtime"
# seconds.
findtime = 600
# "maxretry" is the number of failures before a host get banned.
maxretry = 3
[ssh]
enabled = true
port = ssh
filter = sshd
logpath = /var/log/auth.log
maxretry = 5
/etc/init.d/fail2ban restart
untuk monitor :
root@jitsi:~# fail2ban-client status
Status
|- Number of jail: 2
`- Jail list: ssh, sshd
root@jitsi:~# fail2ban-client status ssh
Status for the jail: ssh
|- Filter
| |- Currently failed: 12
| |- Total failed: 290
| `- File list: /var/log/auth.log
`- Actions
|- Currently banned: 2
|- Total banned: 2
`- Banned IP list: 54.37.71.235 103.75.100.106
0 comments:
Post a Comment