freebsd-ports/security/py-fail2ban/files/patch-bsd-ipfw.conf

--- /dev/null	2010-01-12 16:33:00.000000000 -0500
+++ ./config/action.d/bsd-ipfw.conf	2010-01-12 16:26:51.000000000 -0500
@@ -0,0 +1,65 @@
+# Fail2Ban configuration file
+#
+# Author: Nick Munger
+# Modified by: Ken Menzel
+#
+
+[Definition]
+
+# Option:  actionstart
+# Notes.:  command executed once at the start of Fail2Ban.
+# Values:  CMD
+#
+actionstart = 
+
+
+# Option:  actionstop
+# Notes.:  command executed once at the end of Fail2Ban
+# Values:  CMD
+#
+actionstop = 
+
+
+# Option:  actioncheck
+# Notes.:  command executed once before each actionban command
+# Values:  CMD
+#
+actioncheck = 
+
+
+# Option:  actionban
+# Notes.:  command executed when banning an IP. Take care that the
+#          command is executed with Fail2Ban user rights.
+# Tags:    <ip>  IP address
+#          <failures>  number of failures
+#          <time>  unix timestamp of the ban time
+# Values:  CMD
+#
+# requires an ipfw rule like "deny ip from table(1) to me"
+actionban = ipfw table 1 add <ip>
+
+
+# Option:  actionunban
+# Notes.:  command executed when unbanning an IP. Take care that the
+#          command is executed with Fail2Ban user rights.
+# Tags:    <ip>  IP address
+#          <failures>  number of failures
+#          <time>  unix timestamp of the ban time
+# Values:  CMD
+#
+actionunban = ipfw table 1 delete <ip>
+
+[Init]
+
+# Option:  port
+# Notes.:  specifies port to monitor
+# Values:  [ NUM | STRING ]
+#
+#port = ssh
+port = ftp
+
+# Option:  localhost
+# Notes.:  the local IP address of the network interface
+# Values:  IP
+#
+localhost = 127.0.0.1
- Update to 0.84 - Install sample jail.conf and fail2ban.conf files so that when users modify the fail2ban.conf and jail.conf files they are not removed. - Add an IPFW example using IPFW tables - Created freebsd sshd and ftp example conf files. Submitted by: Ken Menzel <kmenzel@whisolutions.com> (via e-mail) 2010-01-14 05:41:12 +01:00			`--- /dev/null 2010-01-12 16:33:00.000000000 -0500`
			`+++ ./config/action.d/bsd-ipfw.conf 2010-01-12 16:26:51.000000000 -0500`
			`@@ -0,0 +1,65 @@`
			`+# Fail2Ban configuration file`
			`+#`
			`+# Author: Nick Munger`
			`+# Modified by: Ken Menzel`
			`+#`
			`+`
			`+[Definition]`
			`+`
			`+# Option: actionstart`
			`+# Notes.: command executed once at the start of Fail2Ban.`
			`+# Values: CMD`
			`+#`
			`+actionstart =`
			`+`
			`+`
			`+# Option: actionstop`
			`+# Notes.: command executed once at the end of Fail2Ban`
			`+# Values: CMD`
			`+#`
			`+actionstop =`
			`+`
			`+`
			`+# Option: actioncheck`
			`+# Notes.: command executed once before each actionban command`
			`+# Values: CMD`
			`+#`
			`+actioncheck =`
			`+`
			`+`
			`+# Option: actionban`
			`+# Notes.: command executed when banning an IP. Take care that the`
			`+# command is executed with Fail2Ban user rights.`
			`+# Tags: <ip> IP address`
			`+# <failures> number of failures`
			`+# <time> unix timestamp of the ban time`
			`+# Values: CMD`
			`+#`
			`+# requires an ipfw rule like "deny ip from table(1) to me"`
			`+actionban = ipfw table 1 add <ip>`
			`+`
			`+`
			`+# Option: actionunban`
			`+# Notes.: command executed when unbanning an IP. Take care that the`
			`+# command is executed with Fail2Ban user rights.`
			`+# Tags: <ip> IP address`
			`+# <failures> number of failures`
			`+# <time> unix timestamp of the ban time`
			`+# Values: CMD`
			`+#`
			`+actionunban = ipfw table 1 delete <ip>`
			`+`
			`+[Init]`
			`+`
			`+# Option: port`
			`+# Notes.: specifies port to monitor`
			`+# Values: [ NUM \| STRING ]`
			`+#`
			`+#port = ssh`
			`+port = ftp`
			`+`
			`+# Option: localhost`
			`+# Notes.: the local IP address of the network interface`
			`+# Values: IP`
			`+#`
			`+localhost = 127.0.0.1`