Re: [Fail2ban-users] nftables & protocol = all

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    <div class="moz-cite-prefix">On 4/20/20 8:13 AM, Arnaud wrote:<br>
    </div>
    <blockquote type="cite"
      cite="mid:d8a...@ai...">
      <pre class="moz-quote-pre" wrap="">I wasn't able to run with nftables and "protocol = all". Sorry in
advance if it has been discussed several time.
I basically want f2b ban on all port and all protocol.
</pre>
    </blockquote>
    <p>I have not yet used nftables, but the equivalent allports (and
      all protocols) action appears to be either (depending on fail2ban
      version) action <tt>nftables-allports.conf</tt> or <tt>nftables.conf</tt>
      (see <a moz-do-not-send="true"
href="https://github.com/fail2ban/fail2ban/commit/c753ffb11d8ad81c03a89398892b0e1870e8707f#diff-6e277055ba1100ef5bab0e39246ce75f">this
        commit</a> for the latter).<br>
    </p>
  </body>
</html>