Vesta Control Panel - Forum

Community Forum
https://forum.vestacp.com/

SSH port - Fail2Ban

https://forum.vestacp.com/viewtopic.php?f=10&t=9113

Page 1 of 1

SSH port - Fail2Ban

Posted: Fri Aug 21, 2015 10:07 am
by Ghillie-up
Why does Vesta inject a rule in to IP tables -

-A fail2ban-SSH -s 195.x.x.x/32 -j REJECT --reject-with icmp-port-unreachable

However it doesn't block SSH. I change the port by default. So have been looking at config but unsure on what to change.

Re: SSH port - Fail2Ban

Posted: Fri Aug 21, 2015 10:50 am
by skurudo
Ghillie-up wrote: -A fail2ban-SSH -s 195.x.x.x/32 -j REJECT --reject-with icmp-port-unreachable
However it doesn't block SSH. I change the port by default. So have been looking at config but unsure on what to change.
It does block SSH, for IP. it's your IP - 195.x.x.x/32? How do you check then?

Re: SSH port - Fail2Ban

Posted: Fri Aug 21, 2015 1:01 pm
by Ghillie-up
Because I can still SSH to the box from that IP.

I also have a jump server i use for connectivity and viewing logs on a different IP in case it locks me out.
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/