Add Fail2Ban configuration for Postfix and create playbooks for Duo Security and GeoIP roles
This commit is contained in:
@@ -96,11 +96,17 @@ fail2ban_jails:
|
||||
postfix:
|
||||
enabled: true
|
||||
port: "smtp,ssmtp"
|
||||
filter: "postfix"
|
||||
filter: "postfix-k8s"
|
||||
logpath: "/var/log/postfix/current"
|
||||
maxretry: 3
|
||||
findtime: 600
|
||||
bantime: 3600
|
||||
findtime: 18000
|
||||
bantime: -1
|
||||
|
||||
fail2ban_filters:
|
||||
postfix-k8s:
|
||||
Definition:
|
||||
failregex: "^.*?postfix/smtps/smtpd\\[\\d+\\]:.*\\[<HOST>\\]: SASL ((?i)LOGIN|PLAIN|(?:CRAM|DIGEST)-MD5) authentication failed.*$"
|
||||
ignoreregex: ""
|
||||
|
||||
# aide
|
||||
install_aide: true
|
||||
|
||||
Reference in New Issue
Block a user