nixos-config
/
nixos-template-base
4
0
Fork 0
Code Issues 7 Pull Requests Releases Activity

il faut configurer un peu plus la règle

Browse Source
extraction-donnees-privees
Jean-Pierre PRUNARET 9 years ago
parent 6c02c2200c
commit e7ef51ecbe
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File

6
base/activation-manuelle/service-fail2ban.nix
Unescape Escape View File

@ -42,11 +42,15 @@ mkIf cfg.fail2ban {
action = route[blocktype=blackhole] action = route[blocktype=blackhole]
maxretry = 3 maxretry = 3
''; '';
ssh-mail-whois = ''
filter = sshd
maxretry = 3
action = mail-whois[dest=${destemail}]
'';
}; };
}; };
}; };
# https://github.com/NixOS/nixpkgs/issues/8437 # https://github.com/NixOS/nixpkgs/issues/8437
services.fail2ban.jails.ssh-iptables = "enabled = true"; services.fail2ban.jails.ssh-iptables = "enabled = true";
services.fail2ban.jails.mail-whois-lines = "enabled = true";
} }

Write Preview
Loading…
Cancel
Save