fail2ban-users

[Fail2ban-users] Protection of customized services

[Jason L. <hac...@ya...>]

Hello,
GitLab uses Nginx and PostgreSQL internally. I want to protect Nginx with Fail2Ban. The GitLab log directory contains the following files:

# ls  /var/log/gitlab/nginx/
access.log  config  current  error.log    gitlab_access.log  gitlab_access.log.1.gz  gitlab_error.log  lock


Is the following Fail2Ban configuration OK?

[nginx-http-auth]
enabled = true
port     = http,https
logpath = /var/log/gitlab/nginx/*error.log
findtime = 600
bantime = 7200
maxretry = 3

Thank you.

Re: [Fail2ban-users] Protection of customized services

[Nick H. <ni...@ho...>]

Why not just enable the nginx-http-auth config in jail.conf (using a 
jail.local, preferably)?

On 05/03/2024 09:57, Jason Long via Fail2ban-users wrote:
> Hello,
> GitLab uses Nginx and PostgreSQL internally. I want to protect Nginx with Fail2Ban. The GitLab log directory contains the following files:
> 
> # ls  /var/log/gitlab/nginx/
> access.log  config  current  error.log    gitlab_access.log  gitlab_access.log.1.gz  gitlab_error.log  lock
> 
> 
> Is the following Fail2Ban configuration OK?
> 
> [nginx-http-auth]
> enabled = true
> port     = http,https
> logpath = /var/log/gitlab/nginx/*error.log
> findtime = 600
> bantime = 7200
> maxretry = 3
> 
> Thank you.
> 
> 
> _______________________________________________
> Fail2ban-users mailing list
> Fai...@li...
> https://lists.sourceforge.net/lists/listinfo/fail2ban-users

Re: [Fail2ban-users] Protection of customized services

[Jason L. <hac...@ya...>]

> Why not just enable the nginx-http-auth config in jail.conf (using a
jail.local, preferably)?

> On 05/03/2024 09:57, Jason Long via Fail2ban-users wrote:
> Hello,
> GitLab uses Nginx and PostgreSQL internally. I want to protect Nginx with Fail2Ban. The GitLab log directory contains the following files:
> 
> # ls  /var/log/gitlab/nginx/
> access.log  config  current  error.log    gitlab_access.log  gitlab_access.log.1.gz  gitlab_error.log  lock
> 
> 
> Is the following Fail2Ban configuration OK?
> 
> [nginx-http-auth]
> enabled = true
> port     = http,https
> logpath = /var/log/gitlab/nginx/*error.log
> findtime = 600
> bantime = 7200
> maxretry = 3
> 
> Thank you.
> 
> 
> _______________________________________________
> Fail2ban-users mailing list
> Fai...@li...
> https://lists.sourceforge.net/lists/listinfo/fail2ban-users



_______________________________________________
Fail2ban-users mailing list
Fai...@li...
https://lists.sourceforge.net/lists/listinfo/fail2ban-users


Hello,
Thanks.
The problem is the "logpath" value. As I said, this is not a normal Nginx installation.