Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
K
K
Kamil2019-09-10 14:50:47
linux
Kamil, 2019-09-10 14:50:47

How to fix error in fail2ban?

Hello. Installed fail2ban and configured the bare minimum.
When I start I see errors in the logs, tell me how to fix it?

2019-09-10 14:49:18,805 fail2ban.jail           [15386]: INFO    Jail 'sshd' started
2019-09-10 14:49:18,811 fail2ban.jail           [15386]: INFO    Jail 'sshd-ddos' started
2019-09-10 14:49:18,814 fail2ban.jail           [15386]: INFO    Jail 'apache-auth' started
2019-09-10 14:49:18,816 fail2ban.jail           [15386]: INFO    Jail 'apache-noscript' started
2019-09-10 14:49:18,818 fail2ban.jail           [15386]: INFO    Jail 'apache-overflows' started
2019-09-10 14:49:18,820 fail2ban.jail           [15386]: INFO    Jail 'apache-nohome' started
2019-09-10 14:49:18,910 fail2ban.action         [15386]: ERROR   ipset create fail2ban-default hash:ip timeout 600
firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -p tcp -m multiport --dports ssh -m set --match-set fail2ban-default src -j REJECT --reject-with icmp-port-unreachable -- stdout: b''
2019-09-10 14:49:18,910 fail2ban.action         [15386]: ERROR   ipset create fail2ban-default hash:ip timeout 600
firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -p tcp -m multiport --dports ssh -m set --match-set fail2ban-default src -j REJECT --reject-with icmp-port-unreachable -- stderr: b'/bin/sh: 2: firewall-cmd: not found\n'
2019-09-10 14:49:18,911 fail2ban.action         [15386]: ERROR   ipset create fail2ban-default hash:ip timeout 600
firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -p tcp -m multiport --dports ssh -m set --match-set fail2ban-default src -j REJECT --reject-with icmp-port-unreachable -- returned 127
2019-09-10 14:49:18,911 fail2ban.action         [15386]: INFO    HINT on 127: "Command not found".  Make sure that all commands in 'ipset create fail2ban-default hash:ip timeout 600\nfirewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -p tcp -m multiport --dports ssh -m set --match-set fail2ban-default src -j REJECT --reject-with icmp-port-unreachable' are in the PATH of fail2ban-server process (grep -a PATH= /proc/`pidof -x fail2ban-server`/environ). You may want to start "fail2ban-server -f" separately, initiate it with "fail2ban-client reload" in another shell session and observe if additional informative error messages appear in the terminals.
2019-09-10 14:49:18,911 fail2ban.actions        [15386]: ERROR   Failed to start jail 'sshd' action 'firewallcmd-ipset': Error starting action
2019-09-10 14:49:18,912 fail2ban.actions        [15386]: NOTICE  [sshd] Ban 51.75.123.124

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
R
Radjah, 2019-09-10
@Radjah

> firewall-cmd: not found
Either install the firewalld package or switch to an action that uses iptables.

Similar questions
A
Andrey2022-01-22 03:34:54
How to wait for data to be received from the calling component? 2Reply
M
Mor2021-09-04 12:24:47
MPD does not start, what is the reason for this? 1Reply
G
giggigi2013-03-25 16:17:21
3q nettop SHELL. What can be done with it? 3Reply
H
HellWalk2018-05-31 14:47:48
Why doesn't it let me transfer the file with 777 permissions even with sudo? 1Reply
S
snk2013-03-29 04:45:03
Skype analogue, what? 10Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question