How to config Fail2Ban for RoundCube intrusions
Posted: Thu Jul 04, 2019 9:27 am
You must to add to "/etc/fail2ban/jail.local" file (in Server > Fail2Ban > Configure) the next jail:
For Debian/Ubuntu:
For CentOS:
To view banned IP's list from terminal (Chain fail2ban-WEB):
For Debian/Ubuntu:
Code: Select all
[roundcube-auth]
enabled = true
action = vesta[name=WEB]
logpath = /var/log/roundcube/errors
maxretry = 5
Code: Select all
[roundcube-auth]
enabled = true
action = vesta[name=WEB]
logpath = /var/log/roundcubemail/errors.log
maxretry = 5
To view banned IP's list from terminal (Chain fail2ban-WEB):
Code: Select all
sudo iptables -L