Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
E
E
Evgeny Starkov2020-05-23 19:59:07
linux
Evgeny Starkov, 2020-05-23 19:59:07

How can I prevent Fail2Ban from sending my server's IP from the UFW log to AbuseIPDB?

I set the following parameters in the jail.conf config and it automatically sends data from the UFW log to the AbuseIPDB website, how to hide the IP or make your own comments when sending

jail.conf

[portscan]
enabled  = true
filter   = portscan
action = ufw
         %(action_abuseipdb)s[abuseipdb_apikey="xxx", abuseipdb_category="14,15"]

I tried this:

jail.conf
[portscan]
enabled  = true
filter   = portscan
action = ufw
         %(action_abuseipdb)s[abuseipdb_apikey="xxx", comment="Portscan!", abuseipdb_category="14,15"]


Does not work...

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
E
Evgeny Starkov, 2020-05-26
@asencilius

Solution:
jail.conf

[portscan]
enabled  = true
filter   = portscan
action = ufw
         %(action_abuseipdb)s[abuseipdb_apikey="xxx", matches="Portscan!", abuseipdb_category="14,15"]

Report
H
hint000, 2020-05-24
@hint000

Register the address in the whitelist:
https://www.fail2ban.org/wiki/index.php/Whitelist

Similar questions
N
Nikolai Vasilchuk2012-04-09 05:51:26
Ubuntu + ATI = green screen when playing video? 3Reply
K
Ka4a2015-11-18 11:20:59
Why did the letters take a long time to reach the addressee? 2Reply
A
Alexey Akulovich2012-04-09 18:02:26
Manage overlay on icons? 1Reply
V
vasIvas2015-11-18 15:49:48
Does xubuntu gnu/linux count? 1Reply
K
Konstantin2018-03-28 00:15:04
ASP.NET CORE application on Linux? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question