Skip to content

zoide/puppet-fail2ban

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
app
app
 
 
files
files
 
 
manifests
manifests
 
 
spec
spec
 
 
templates
templates
 
 
tests
tests
 
 
Modulefile
Modulefile
 
 
README.rst
README.rst
 
 
REVISION
REVISION
 
 
init.rb
init.rb
 
 
metadata.json
metadata.json
 
 

Repository files navigation

Overview

This module installs fail2ban and configures its jails and email notifications. It can be used standalone or with Initr.

Initr is a Redmine plugin that acts as an external node classifier and provides a GUI to configure puppet modules.

Stuff on app/ and init.rb is only needed by Initr.

Variables

Fail2ban class accepts 3 parameters:

  • jails: Array with jails that should be enabled (check values currently accepted at templates/jail.local.erb)
  • custom_jails: Text to add directly to configuration
  • mailto: email to send notifications to, if any

Expected external node classifier YAML

Fail2ban is a parameterized class, when using an external node classifier classes must be a hash to pass required variables. This is an example YAML:

classes:
  fail2ban:
    mailto: alert@example.com
    jails:
      - vsftpd
      - ssh

that's:

{ "classes" => { "fail2ban" => { "mailto" => "alert@example.com", "jails" => ["vsftpd", "ssh"] } } }

applying this conf will configure fail2ban with ssh and vsftpd jails, and notifications sent to alert@example.com

About

Fail2Ban

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages