Thursday, April 26, 2012

Fail2Ban & Iptables conf for Preventing Hacking Attempts on Ubuntu

I noticed lots of intrusion attempts on our servers, so was in search of utility which will let me prevent these attacks automatically.


Fail2Ban is an intrusion prevention framework written in the Python programming language. 
It works by reading SSH, ProFTP, Apache logs etc.. and uses iptables profiles to block brute-force attempts. 
For Installation and configuration details, Visit Fail2Ban On Ubuntu




While searching for other methods , I came across which proved Iptables configuration to defy intrusion attacks on ssh port. Here is the How to Block SSH Attacks


Here is process to unblock ipaddress which got blocked by mistake
Delete Blocked IP address

No comments: