Puppet Class: fail2ban
- Defined in:
- manifests/init.pp
Summary
Manage fail2ban and its configuration to jam bruteforce attempts on services running on a computer.Overview
fail2ban/manifests/init.pp
-
Copyright (C) 2007 admin@immerda.ch
-
Copyright (C) 2014-2018 gabster@lelutin.ca
55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 |
# File 'manifests/init.pp', line 55
class fail2ban (
# Options that change how the module behaves
Boolean $rm_jail_local = true,
Boolean $purge_jail_dot_d = true,
Boolean $persistent_bans = false,
# Options for jail.conf
Array[String, 0] $ignoreip = ['127.0.0.1'],
Integer $bantime = 600,
Integer $findtime = 600,
Integer $maxretry = 3,
String $ignorecommand = '',
Fail2ban::Backend $backend = 'auto',
String $destemail = 'root@localhost',
String $banaction = 'iptables-multiport',
String $chain = 'INPUT',
Fail2ban::Port $port = '0:65535',
String $mta = 'sendmail',
Fail2ban::Protocol $protocol = 'tcp',
String $action = '%(action_)s',
Fail2ban::Usedns $usedns = 'warn',
) {
contain fail2ban::install
contain fail2ban::config
contain fail2ban::service
Class['fail2ban::install']
-> Class['fail2ban::config']
~> Class['fail2ban::service']
}
|