X7ROOT File Manager
Current Path:
/etc/fail2ban/filter.d
etc
/
fail2ban
/
filter.d
/
📁
..
📄
3proxy.conf
(467 B)
📄
apache-auth.conf
(3.15 KB)
📄
apache-badbots.conf
(2.76 KB)
📄
apache-botsearch.conf
(1.24 KB)
📄
apache-common.conf
(1.58 KB)
📄
apache-fakegooglebot.conf
(324 B)
📄
apache-modsecurity.conf
(511 B)
📄
apache-nohome.conf
(596 B)
📄
apache-noscript.conf
(1.22 KB)
📄
apache-overflows.conf
(2.13 KB)
📄
apache-pass.conf
(362 B)
📄
apache-shellshock.conf
(1020 B)
📄
assp.conf
(3.41 KB)
📄
asterisk.conf
(2.31 KB)
📄
bitwarden.conf
(427 B)
📄
botsearch-common.conf
(522 B)
📄
centreon.conf
(307 B)
📄
common.conf
(2.71 KB)
📄
counter-strike.conf
(244 B)
📄
courier-auth.conf
(429 B)
📄
courier-smtp.conf
(512 B)
📄
cyrus-imap.conf
(444 B)
📄
directadmin.conf
(338 B)
📄
domino-smtp.conf
(2.06 KB)
📄
dovecot.conf
(2.4 KB)
📄
dropbear.conf
(1.69 KB)
📄
drupal-auth.conf
(557 B)
📄
ejabberd-auth.conf
(1.54 KB)
📄
exim-common.conf
(516 B)
📄
exim-spam.conf
(2.11 KB)
📄
exim.conf
(2.81 KB)
📄
freeswitch.conf
(1.88 KB)
📄
froxlor-auth.conf
(1.18 KB)
📄
gitlab.conf
(236 B)
📄
grafana.conf
(388 B)
📄
groupoffice.conf
(236 B)
📄
gssftpd.conf
(322 B)
📄
guacamole.conf
(1.41 KB)
📄
haproxy-http-auth.conf
(1.14 KB)
📄
horde.conf
(404 B)
📁
ignorecommands
📄
kerio.conf
(938 B)
📄
lighttpd-auth.conf
(333 B)
📄
mongodb-auth.conf
(2.23 KB)
📄
monit.conf
(787 B)
📄
murmur.conf
(927 B)
📄
mysqld-auth.conf
(953 B)
📄
nagios.conf
(400 B)
📄
named-refused.conf
(1.46 KB)
📄
nginx-botsearch.conf
(681 B)
📄
nginx-http-auth.conf
(485 B)
📄
nginx-limit-req.conf
(1.42 KB)
📄
nsd.conf
(760 B)
📄
openhab.conf
(452 B)
📄
openwebmail.conf
(495 B)
📄
oracleims.conf
(1.89 KB)
📄
pam-generic.conf
(947 B)
📄
perdition.conf
(568 B)
📄
php-url-fopen.conf
(891 B)
📄
phpmyadmin-syslog.conf
(278 B)
📄
portsentry.conf
(242 B)
📄
postfix.conf
(3.09 KB)
📄
proftpd.conf
(1.14 KB)
📄
pure-ftpd.conf
(2.35 KB)
📄
qmail.conf
(795 B)
📄
recidive.conf
(1.34 KB)
📄
roundcube-auth.conf
(1.46 KB)
📄
screensharingd.conf
(821 B)
📄
selinux-common.conf
(538 B)
📄
selinux-ssh.conf
(570 B)
📄
sendmail-auth.conf
(776 B)
📄
sendmail-reject.conf
(2.88 KB)
📄
sieve.conf
(371 B)
📄
slapd.conf
(706 B)
📄
softethervpn.conf
(451 B)
📄
sogo-auth.conf
(722 B)
📄
solid-pop3d.conf
(1.07 KB)
📄
squid.conf
(260 B)
📄
squirrelmail.conf
(191 B)
📄
sshd.conf
(7.34 KB)
📄
stunnel.conf
(363 B)
📄
suhosin.conf
(649 B)
📄
tine20.conf
(890 B)
📄
traefik-auth.conf
(2.33 KB)
📄
uwimap-auth.conf
(374 B)
📄
vsftpd.conf
(637 B)
📄
webmin-auth.conf
(444 B)
📄
wuftpd.conf
(520 B)
📄
xinetd-fail.conf
(521 B)
📄
znc-adminlog.conf
(912 B)
📄
zoneminder.conf
(524 B)
Editing: freeswitch.conf
# Fail2Ban configuration file # # Enable "log-auth-failures" on each Sofia profile to monitor # <param name="log-auth-failures" value="true"/> # -- this requires a high enough loglevel on your logs to save these messages. # # In the fail2ban jail.local file for this filter set ignoreip to the internal # IP addresses on your LAN. # [INCLUDES] # Read common prefixes. If any customizations available -- read them from # common.local before = common.conf [Definition] _daemon = freeswitch # Parameter "mode": normal, ddos or extra (default, combines all) # Usage example (for jail.local): # [freeswitch] # mode = normal # # or with rewrite filter parameters of jail: # [freeswitch-ddos] # filter = freeswitch[mode=ddos] # mode = extra # Prefix contains common prefix line (server, daemon, etc.) and 2 datetimes if used systemd backend _pref_line = ^%(__prefix_line)s(?:(?:\d+-)?\d+-\d+ \d+:\d+:\d+\.\d+)? prefregex = ^%(_pref_line)s \[WARN(?:ING)?\](?: \[SOFIA\])? \[?sofia_reg\.c:\d+\]? <F-CONTENT>.+</F-CONTENT>$ cmnfailre = ^Can't find user \[[^@]+@[^\]]+\] from <HOST>$ mdre-normal = %(cmnfailre)s ^SIP auth failure \((REGISTER|INVITE)\) on sofia profile \'[^']+\' for \[[^\]]*\] from ip <HOST>$ mdre-ddos = ^SIP auth (?:failure|challenge) \((REGISTER|INVITE)\) on sofia profile \'[^']+\' for \[[^\]]*\] from ip <HOST>$ mdre-extra = %(cmnfailre)s <mdre-ddos> failregex = <mdre-<mode>> ignoreregex = datepattern = ^(?:%%Y-)?%%m-%%d[ T]%%H:%%M:%%S(?:\.%%f)? {^LN-BEG} # Author: Rupa SChomaker, soapee01, Daniel Black, Sergey Brester aka sebres # https://freeswitch.org/confluence/display/FREESWITCH/Fail2Ban # Thanks to Jim on mailing list of samples and guidance # # No need to match the following. Its a duplicate of the SIP auth regex. # ^\.\d+ \[DEBUG\] sofia\.c:\d+ IP <HOST> Rejected by acl "\S+"\. Falling back to Digest auth\.$
Upload File
Create Folder