Unified Diff: modules/fail2ban/templates/jail.erb
Issue 29364214:
Issue 2487 - Introduce fail2ban module (Closed)
Patch Set: Issue 2487 - Introduce fail2ban module
Created Nov. 25, 2016, 3:17 p.m.
Use n/p to move between diff chunks;
N/P to move between comments.
« modules/fail2ban/manifests/init.pp ('K')
|
« modules/fail2ban/templates/filter.erb ('k')
|
modules/private-stub/hiera/base.yaml » ('j')
|
no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')
| Index: modules/fail2ban/templates/jail.erb |
| =================================================================== |
| new file mode 100644 |
| --- /dev/null |
| +++ b/modules/fail2ban/templates/jail.erb |
| @@ -0,0 +1,12 @@ |
| +<% @jail_config.each do |name, config| -%> |
| +<% if !config['logpath'].empty? -%> |
| +[<%= name %>] |
| + |
| +enabled = <%= config['enabled'] ||= true %> |
| +port = <%= config['port'] ||= 'all' %> |
|
f.nicolaisen
2016/11/25 16:23:30
'all' is not a valid port range for iptables, ref
f.lopez
2016/11/25 17:41:10
Well, according to the examples provided by fail2b
|
| +filter = <%= name %> |
| +logpath = <%= config['logpath'] %> |
| +maxretry = <%= config['maxretry'] ||= 6 %> |
| +bantime = <%= config['bantime']||= 3600 %> |
| +<% end -%> |
| +<% end -%> |
« modules/fail2ban/manifests/init.pp ('K')
|
« modules/fail2ban/templates/filter.erb ('k')
|
modules/private-stub/hiera/base.yaml » ('j')
|
no next file with comments »
