HI.
I have a cloud installation and I would like to analyze the behavior of fail2ban. In addition to the blocks that occur for ssh requests, I can use it to block requests on port 5061 in tls. Currently I can't verify this.
Do you think it is feasible to check this?
I installed the crowdsec firewall iptables in my server for check the malicious ip's and saw many attack in the section " ssh brute force " and " http bad user agent ".
What are the changes to be made in the configuration file?
Thanks Andrea
I have a cloud installation and I would like to analyze the behavior of fail2ban. In addition to the blocks that occur for ssh requests, I can use it to block requests on port 5061 in tls. Currently I can't verify this.
Do you think it is feasible to check this?
I installed the crowdsec firewall iptables in my server for check the malicious ip's and saw many attack in the section " ssh brute force " and " http bad user agent ".
What are the changes to be made in the configuration file?
Thanks Andrea
Last edited: