I've noticed that I no longer get emails about IPs being banned by fail2ban, which I used to with the "old" (CentOS, PIAF 11).
Digging deeper, it appears that the entire fail2ban has been disabled in /etc/fail2ban/jail.conf:
On Centos/PIAF11, it looked thusly:
I dont rember if I changed that in the installtion, as there's nothing much interesting in /var/log/messages, nor in /var/log/asterisk/messages either on PIAF12.
Clearly, enabled=false will disable the jail for asterisk entirely. Is it safe and/or useful to just set enabled=true on PIAF12 and then restart fail2ban ?
Digging deeper, it appears that the entire fail2ban has been disabled in /etc/fail2ban/jail.conf:
Code:
# Multiple jails, 1 per protocol, are necessary ATM:
# see https://github.com/fail2ban/fail2ban/issues/37
[asterisk-tcp]
enabled = false
filter = asterisk
port = 5060,5061
protocol = tcp
logpath = /var/log/asterisk/messages
[asterisk-udp]
enabled = false
filter = asterisk
port = 5060,5061
protocol = udp
logpath = /var/log/asterisk/messagesOn Centos/PIAF11, it looked thusly:
Code:
[asterisk-iptables]
enabled = true
filter = asterisk
action = iptables-allports[name=ASTERISK, protocol=all]
sendmail-whois[name=ASTERISK, dest=root@localhost, [email protected]]
logpath = /var/log/asterisk/full
#logpath = /var/log/messages
maxretry = 5
bantime = 1800I dont rember if I changed that in the installtion, as there's nothing much interesting in /var/log/messages, nor in /var/log/asterisk/messages either on PIAF12.
Clearly, enabled=false will disable the jail for asterisk entirely. Is it safe and/or useful to just set enabled=true on PIAF12 and then restart fail2ban ?
Phone System 