evolix
/
ansible-roles
16
2
Fork 1
Code Issues 52 Pull Requests 13 Releases 29 Wiki Activity
Ansible roles by Evolix
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2287 Commits
37 Branches
4.3 MiB
 
 
 
 
 
 
Branch: stable
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'stable'
${ noResults }
ansible-roles/fail2ban
Jérémy Lecour afa0fd35c8 Change default public SSH/SFTP port from 2222 to 22222 1 month ago
..
defaults fail2ban: add a variable to update the list of ignored IP addresses 2 years ago
files fail2ban: add roundcube filter 3 years ago
handlers fail2ban: Install munin plugin if available 2 years ago
meta change repositories URL 1 year ago
tasks trailing space 6 months ago
templates Change default public SSH/SFTP port from 2222 to 22222 1 month ago
tests Add tests for many roles 3 years ago
.kitchen.yml Kitchen: Change base image to evolix/ansible 3 years ago
README.md apache/nginx/fail2ban: mention ip_whitelist.yml in README.md 1 year ago

README.md

fail2ban

Install Fail2ban.

Tasks

Everything is in the tasks/main.yml file.

An ip_whitelist.yml standalone task file is available to update IP adresses whitelist without rolling the whole role.

Available variables

Main variables are :

  • general_alert_email: email address to send various alert messages (default: root@localhost).
  • fail2ban_alert_email: email address for messages sent to root (default: general_alert_email).
  • fail2ban_default_ignore_ips: default list of IPs to ignore (default: empty).
  • fail2ban_additional_ignore_ips: additional list of IPs to ignore (default: empty).
  • fail2ban_disable_ssh: if true, the “sshd” filter is disabled, otherwise nothing is done, not even enabling the filter (default: False).

The full list of variables (with default values) can be found in defaults/main.yml.