Source

iredmail / iRedMail / conf / fail2ban

#!/usr/bin/env bash

# Author:   Zhang Huangbin (zhb _at_ iredmail.org)

#---------------------------------------------------------------------
# This file is part of iRedMail, which is an open source mail server
# solution for Red Hat(R) Enterprise Linux, CentOS, Debian and Ubuntu.
#
# iRedMail is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# iRedMail is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with iRedMail.  If not, see <http://www.gnu.org/licenses/>.
#---------------------------------------------------------------------

# Variables for Fail2ban and related.

export FAIL2BAN_CONF_ROOT='/etc/fail2ban'
export FAIL2BAN_RC_SCRIPT_NAME='fail2ban'

if [ X"${DISTRO}" == X"RHEL" ]; then
    export FAIL2BAN_SSHD_LOGFILE='/var/log/secure'
elif [ X"${DISTRO}" == X"DEBIAN" -o X"${DISTRO}" == X"UBUNTU" ]; then
    export FAIL2BAN_SSHD_LOGFILE='/var/log/auth.log'
elif [ X"${DISTRO}" == X"SUSE" ]; then
    export FAIL2BAN_SSHD_LOGFILE='/var/log/messages'
elif [ X"${DISTRO}" == X"GENTOO" ]; then
    export FAIL2BAN_SSHD_LOGFILE='/var/log/messages'
elif [ X"${DISTRO}" == X"FREEBSD" ]; then
    export FAIL2BAN_CONF_ROOT='/usr/local/etc/fail2ban'
    export FAIL2BAN_SSHD_LOGFILE='/var/log/auth.log'
fi

export FAIL2BAN_MAIN_CONF="${FAIL2BAN_CONF_ROOT}/fail2ban.conf"
export FAIL2BAN_JAIL_CONF="${FAIL2BAN_CONF_ROOT}/jail.conf"
export FAIL2BAN_JAIL_LOCAL_CONF="${FAIL2BAN_CONF_ROOT}/jail.local"
export FAIL2BAN_FILTER_DIR="${FAIL2BAN_CONF_ROOT}/filter.d"
export FAIL2BAN_ACTION_DIR="${FAIL2BAN_CONF_ROOT}/action.d"

export FAIL2BAN_FILTER_POSTFIX="postfix.iredmail"
export FAIL2BAN_FILTER_ROUNDCUBE="roundcube.iredmail"
export FAIL2BAN_FILTER_DOVECOT="dovecot.iredmail"

# Fail2ban logtarget: STDOUT STDERR SYSLOG file.
# Default log file is /var/log/fail2ban.log.
export FAIL2BAN_LOGTARGET='SYSLOG'
export FAIL2BAN_DISABLED_SERVICES="http,https,smtp,submission,pop3,pop3s,imap,imaps,sieve"
Tip: Filter by directory path e.g. /media app.js to search for public/media/app.js.
Tip: Use camelCasing e.g. ProjME to search for ProjectModifiedEvent.java.
Tip: Filter by extension type e.g. /repo .js to search for all .js files in the /repo directory.
Tip: Separate your search with spaces e.g. /ssh pom.xml to search for src/ssh/pom.xml.
Tip: Use ↑ and ↓ arrow keys to navigate and return to view the file.
Tip: You can also navigate files with Ctrl+j (next) and Ctrl+k (previous) and view the file with Ctrl+o.
Tip: You can also navigate files with Alt+j (next) and Alt+k (previous) and view the file with Alt+o.