b776fc3da2
Now the list of whitelisted ip addresses can be updated simply by including the specific tasks in an external playbook without polluting our role list. This change takes effect for nginx, apache and fail2ban. |
||
---|---|---|
.. | ||
defaults | ||
files | ||
handlers | ||
meta | ||
tasks | ||
templates | ||
tests | ||
.kitchen.yml | ||
README.md |
fail2ban
Install Fail2ban.
Tasks
Everything is in the tasks/main.yml
file.
Available variables
Main variables are :
general_alert_email
: email address to send various alert messages (default:root@localhost
).fail2ban_alert_email
: email address for messages sent to root (default:general_alert_email
).fail2ban_default_ignore_ips
: default list of IPs to ignore (default: empty).fail2ban_additional_ignore_ips
: additional list of IPs to ignore (default: empty).fail2ban_disable_ssh
: if true, the "sshd" filter is disabled, otherwise nothing is done, not even enabling the filter (default:False
).
The full list of variables (with default values) can be found in defaults/main.yml
.