From: Alex <mys...@gm...> - 2013-04-02 00:49:57
|
Hi, > Fail2ban has no support for detecting ipv6 addresses. However it has > support for detecting hostnames, and banning ip addresses after doing a > ip lookup on the hostname. > > One of your patterns detected a host named '::1'. It is not an ipv4 > address, so it must be a hostname. The error indicates that the ip > lookup for the hostname '::1' failed (naturally). It looks like it's this entry from syslog: Mar 31 03:18:22 email1 dovecot: imap-login: Login: user=<user1>, method=PLAIN, rip=::1, lip=::1, mpid=23893, secured, session=<yAk0TzPZeQAAAAAAAAAAAAAAAAAAAAAB> This looks like a webmail (squirrelmail) login with dovecot. I don't really need IPv6 support. Should I somehow just get dovecot to listen on IPv4 addresses only? Does this affect its normal operation, other than not being able to capture these addresses? In other words, if I didn't need it to match on this particular line, is it a problem? Can I disable the warnings in the interim? Thanks, Alex |