#41 Option to prevent rescan of logs on startup

open
Cyril Jaquier
None
5
2008-05-12
2008-02-23
Mark Ventimiglia
No

I have set up fail2ban on my system to permanently ban IP addresses in iptables that get caught. Basically, I have a ban action and no unban action, with a -1 bantime. This all works great, except that fail2ban rescans all of the logs on startup and rebans any of the addresses that it finds. I worked around this by putting a conditional in the ban command, but it would be cleaner if there were an option to prevent this startup scan from occurring.

By the way, kudos to the team on an excellent tool!

Discussion

  • Cyril Jaquier
    Cyril Jaquier
    2008-05-12

    Logged In: YES
    user_id=933467
    Originator: NO

    Versions starting from 0.9 will not read the whole file at startup anymore. I will probably improve startup/restart a bit too (persist current ban list to disk, etc).

    Thank you for using fail2ban ;)

     
  • Cyril Jaquier
    Cyril Jaquier
    2008-05-12

    • assigned_to: nobody --> lostcontrol