nixos-config
/
nixos-template-base
4
0
Fork 0
Code Issues 7 Pull Requests Releases Activity

ajout de variables locales pour la config de fail2ban

Browse Source
extraction-donnees-privees
Jean-Pierre PRUNARET 9 years ago
parent c5b9c97327
commit 4c3e1abfcb
2 changed files with 8 additions and 6 deletions
Show Stats Download Patch File Download Diff File

12
base/activation-manuelle/fail2ban.nix → base/activation-manuelle/service-fail2ban.nix
Unescape Escape View File

@ -4,6 +4,10 @@ with pkgs.lib;
let let
cfg = config.r6d.config-generator; cfg = config.r6d.config-generator;
ignoreip = "pedro.dubronetwork.fr cube.dubronetwork.fr voyage.prunetwork.fr xray.prunetwork.fr 192.168.0.0/16 172.16.0.0/16";
destemail = "admins@dubronetwork.fr";
in { in {
# Gestion de fail2ban # Gestion de fail2ban
@ -13,18 +17,16 @@ in {
jails = { jails = {
DEFAULT = '' DEFAULT = ''
# "ignoreip" can be an IP address, a CIDR mask or a DNS host # "ignoreip" can be an IP address, a CIDR mask or a DNS host
ignoreip = 127.0.0.1/8 pedro.dubronetwork.fr cube.dubronetwork.fr voyage.prunetwork.fr xray.prunetwork.fr 192.168.0.0/16 172.16.0.0/16 ignoreip = 127.0.0.1/8 ${ignoreip}
# 1 jour # 1 jour
# bantime = 86400 # bantime = 86400
# 5 jours # 5 jours
bantime = 432000 bantime = 432000
maxretry = 3 maxretry = 3
# destemail = ${destemail}
# Destination email address used solely for the interpolations in
# jail.{conf,local} configuration files.
destemail = admins@dubronetwork.fr
''; '';
ssh-route = '' ssh-route = ''
filter = sshd filter = sshd

2
base/base.nix
Unescape Escape View File

@ -5,7 +5,7 @@
./network-dns.nix ./network-dns.nix
# inclusion conditionnelle # inclusion conditionnelle
./activation-manuelle/fail2ban.nix ./activation-manuelle/service-fail2ban.nix
./activation-manuelle/nix-serve-client.nix ./activation-manuelle/nix-serve-client.nix
./activation-manuelle/nix-serve-server.nix ./activation-manuelle/nix-serve-server.nix
./activation-manuelle/users.nix ./activation-manuelle/users.nix

Write Preview
Loading…
Cancel
Save