7c632352a0
The behaviour of the `include` module is badly defined (it try to choose between statically importing the tasks and dynamically including them) and can cause problems depending on any number of constraints (mostly if it choose the wrong behaviour). Replace it with the `import_tasks` (always statically import tasks) unless the `include` is in a loop in which case we replace it with `include_tasks` (always dynamically include tasks). |
||
|---|---|---|
| .. | ||
| defaults | ||
| files | ||
| handlers | ||
| meta | ||
| tasks | ||
| templates | ||
| tests | ||
| .kitchen.yml | ||
| README.md | ||
fail2ban
Install Fail2ban.
Tasks
Everything is in the tasks/main.yml file.
An ip_whitelist.yml standalone task file is available to update IP adresses whitelist without rolling the whole role.
Available variables
Main variables are :
general_alert_email: email address to send various alert messages (default:root@localhost).fail2ban_alert_email: email address for messages sent to root (default:general_alert_email).fail2ban_default_ignore_ips: default list of IPs to ignore (default: empty).fail2ban_additional_ignore_ips: additional list of IPs to ignore (default: empty).fail2ban_disable_ssh: if true, the "sshd" filter is disabled, otherwise nothing is done, not even enabling the filter (default:False).
The full list of variables (with default values) can be found in defaults/main.yml.