search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
rust/cargo-c: update to 0.10.7+cargo-0.84.0
[oi-userland.git] / components / network / fail2ban / patches / 06-dont-use-iptables.patch
blobda07ab5a4cbeb3c934c72041be9b8d1f6b39819c
1 Don't have iptables enabled in jail.conf With ipfilter, it is always "all ports"
2 --- fail2ban-1.0.2/config/jail.conf.old 2024-01-24 12:27:51.440050976 -0500
3 +++ fail2ban-1.0.2/config/jail.conf 2024-01-24 12:28:58.458709510 -0500
4 @@ -205,8 +205,8 @@
5 # iptables-multiport, shorewall, etc) It is used to define
6 # action_* variables. Can be overridden globally or per
7 # section within jail.local file
8 -banaction = iptables-multiport
9 -banaction_allports = iptables-allports
10 +banaction = ipfilter
11 +banaction_allports = ipfilter
12
13 # The simplest action to take: ban only
14 action_ = %(banaction)s[port="%(port)s", protocol="%(protocol)s", chain="%(chain)s"]
15 @@ -839,7 +839,7 @@
16
17 [xinetd-fail]
18
19 -banaction = iptables-multiport-log
20 +banaction = ipfilter
21 logpath = %(syslog_daemon)s
22 backend = %(syslog_backend)s
23 maxretry = 2