Browse Source

fail2ban recidive jail so I can lock myself out optimally

master
Yorick van Pelt 2 years ago
parent
commit
7d51eaa7d8
1 changed files with 8 additions and 0 deletions
  1. +8
    -0
      roles/default.nix

+ 8
- 0
roles/default.nix View File

@@ -21,6 +21,14 @@ in
};
services.timesyncd.enable = true;
services.fail2ban.enable = true;
# ban repeat offenders longer
services.fail2ban.jails.recidive = ''
filter = recidive
action = iptables-allports[name=recidive]
maxretry = 5
bantime = 604800 ; 1 week
findtime = 86400 ; 1 day
'';
users.extraUsers.yorick = {
isNormalUser = true;
uid = 1000;


Loading…
Cancel
Save