From: Brent A. T. <li...@to...> - 2010-08-19 19:10:18
|
I have installed fail2ban on an OpenSuSE 10.2 system in order to prevent SIP attacks in Asterisk. I have setup the jail and filter rules. I have tested the regex against the log files with great success. Fail2ban is running, and the rule is listed in IPtables. However, fail2ban seems to take no action whatsoever when an attack occurs. The fail2ban log file is empty, no IPs are banned. Can anyone suggest where I should start looking for the misconfiguration? I have scoured the config files several times, and even tested the regex against the actual asterisk log files. Any help would be greatly appreciated. |