Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
K
K
Kamil2019-09-10 14:50:47
linux
Kamil, 2019-09-10 14:50:47

How to fix error in fail2ban?

Hello. Installed fail2ban and configured the bare minimum.
When I start I see errors in the logs, tell me how to fix it?

2019-09-10 14:49:18,805 fail2ban.jail           [15386]: INFO    Jail 'sshd' started
2019-09-10 14:49:18,811 fail2ban.jail           [15386]: INFO    Jail 'sshd-ddos' started
2019-09-10 14:49:18,814 fail2ban.jail           [15386]: INFO    Jail 'apache-auth' started
2019-09-10 14:49:18,816 fail2ban.jail           [15386]: INFO    Jail 'apache-noscript' started
2019-09-10 14:49:18,818 fail2ban.jail           [15386]: INFO    Jail 'apache-overflows' started
2019-09-10 14:49:18,820 fail2ban.jail           [15386]: INFO    Jail 'apache-nohome' started
2019-09-10 14:49:18,910 fail2ban.action         [15386]: ERROR   ipset create fail2ban-default hash:ip timeout 600
firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -p tcp -m multiport --dports ssh -m set --match-set fail2ban-default src -j REJECT --reject-with icmp-port-unreachable -- stdout: b''
2019-09-10 14:49:18,910 fail2ban.action         [15386]: ERROR   ipset create fail2ban-default hash:ip timeout 600
firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -p tcp -m multiport --dports ssh -m set --match-set fail2ban-default src -j REJECT --reject-with icmp-port-unreachable -- stderr: b'/bin/sh: 2: firewall-cmd: not found\n'
2019-09-10 14:49:18,911 fail2ban.action         [15386]: ERROR   ipset create fail2ban-default hash:ip timeout 600
firewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -p tcp -m multiport --dports ssh -m set --match-set fail2ban-default src -j REJECT --reject-with icmp-port-unreachable -- returned 127
2019-09-10 14:49:18,911 fail2ban.action         [15386]: INFO    HINT on 127: "Command not found".  Make sure that all commands in 'ipset create fail2ban-default hash:ip timeout 600\nfirewall-cmd --direct --add-rule ipv4 filter INPUT_direct 0 -p tcp -m multiport --dports ssh -m set --match-set fail2ban-default src -j REJECT --reject-with icmp-port-unreachable' are in the PATH of fail2ban-server process (grep -a PATH= /proc/`pidof -x fail2ban-server`/environ). You may want to start "fail2ban-server -f" separately, initiate it with "fail2ban-client reload" in another shell session and observe if additional informative error messages appear in the terminals.
2019-09-10 14:49:18,911 fail2ban.actions        [15386]: ERROR   Failed to start jail 'sshd' action 'firewallcmd-ipset': Error starting action
2019-09-10 14:49:18,912 fail2ban.actions        [15386]: NOTICE  [sshd] Ban 51.75.123.124

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
R
Radjah, 2019-09-10
@Radjah

> firewall-cmd: not found
Either install the firewalld package or switch to an action that uses iptables.

Similar questions
B
bituke2021-05-26 10:08:52
How to quickly deploy someone else's django project? 4Reply
E
elementalist2021-06-02 17:15:04
2 subnets on Mikrotik - LAN and video surveillance. How to get access from LAN to the DVR? 3Reply
A
Alexander2019-06-19 18:45:40
What is the difference between video-linux and video-vesa drivers? 2Reply
S
Sergey Burduzha2019-06-20 01:48:08
How to change keyboard layout in i3w using capslock? 1Reply
E
Evgeny Solomin2017-01-26 11:58:38
What open source solution is suitable for a corporate mail server? 4Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question