Err404 - Misc:fail2ban https://err404.numericore.com/en/ Tue, 21 Apr 2026 12:00:49 +0000 FeedCreator 1.8 https://err404.numericore.com/en/_media/wiki/logo.png Err404 https://err404.numericore.com/en/ start https://err404.numericore.com/en/Misc/fail2ban/start <!-- EDIT{&quot;target&quot;:&quot;plugin_wrap_start&quot;,&quot;hid&quot;:&quot;&quot;,&quot;secid&quot;:1,&quot;range&quot;:&quot;0-&quot;} --><div class="tabs plugin_wrap"><ul> <li class="level1"><div class="li"> <a href="https://err404.numericore.com/en/Misc/fail2ban/" class="urlextern" title="https://err404.numericore.com/en/Misc/fail2ban/">English</a></div> </li> <li class="level1"><div class="li"> <a href="https://err404.numericore.com/fr/Divers/fail2ban/" class="urlextern" title="https://err404.numericore.com/fr/Divers/fail2ban/">Français</a></div> </li> </ul> </div><!-- EDIT{&quot;target&quot;:&quot;plugin_wrap_end&quot;,&quot;hid&quot;:&quot;&quot;,&quot;secid&quot;:2,&quot;range&quot;:&quot;0-&quot;} --> <p> Fail2ban is a software that reads logs and bans IP addresses (IPv4 and IPv6) that abuse the system or perform actions that correspond to certain reasons for banning them. </p> <p> <a href="https://fr.wikipedia.org/wiki/Fail2ban" class="urlextern" title="https://fr.wikipedia.org/wiki/Fail2ban">https://fr.wikipedia.org/wiki/Fail2ban</a> </p> <p> I find it unfortunate that certain errors (http 400, for example) are not banned by default. </p> <p> Here are my files: </p> <h1 class="sectionedit3" id="jails">jails</h1> <div class="level1"> <p> excerpt from <code>/etc/fail2ban/jail.local</code> (which is a copy of /etc/fail2ban/jail.conf) </p> <pre class="code">[nginx-3xx] enabled = true port = http,https logpath = /var/log/nginx/access.log backend = polling bantime = 30d [nginx-4xx] enabled = true port = http,https logpath = /var/log/nginx/access.log backend = polling bantime = 30d [nginx-400] enabled = true port = http,https logpath = /var/log/nginx/access.log backend = polling bantime = 30d maxretry = 0</pre> </div> <!-- EDIT{&quot;target&quot;:&quot;section&quot;,&quot;name&quot;:&quot;jails&quot;,&quot;hid&quot;:&quot;jails&quot;,&quot;codeblockOffset&quot;:0,&quot;secid&quot;:3,&quot;range&quot;:&quot;479-968&quot;} --> <h1 class="sectionedit4" id="Filters">Filters</h1> <div class="level1"> <p> fichier complet pour <code>/etc/fail2ban/filter.d/nginx-3xx.conf</code> </p> <pre class="code">[Definition] failregex = ^&lt;HOST&gt;.*&quot;(GET|POST|HEAD).*&quot; (301|302) .*$ ignoreregex =</pre> <p> complete file for <code>/etc/fail2ban/filter.d/nginx-4xx.conf</code> </p> <pre class="code">[Definition] failregex = ^&lt;HOST&gt;.*&quot;(GET|POST|HEAD).*&quot; (404|444|403|405) .*$ ignoreregex =</pre> <p> complete file for <code>/etc/fail2ban/filter.d/nginx-400.conf</code> </p> <pre class="code">[Definition] failregex = ^&lt;HOST&gt;.*&quot;.*&quot; (400) .*$ ignoreregex =</pre> </div> <!-- EDIT{&quot;target&quot;:&quot;section&quot;,&quot;name&quot;:&quot;Filters&quot;,&quot;hid&quot;:&quot;Filters&quot;,&quot;codeblockOffset&quot;:1,&quot;secid&quot;:4,&quot;range&quot;:&quot;969-&quot;} --> anonymous@undisclosed.example.com (Anonymous) Tue, 09 Sep 2025 09:28:54 +0000