fail2ban DROP and REJECT
by RickPoleshuck from LinuxQuestions.org on (#5RWCV)
I am using ufw and fail2ban. When I get 5 bad login attempts in a short time, my fail2ban configuration blocks the ip address temporarily. However, when a hacker looks for a wordpress url that doesn't exist on my server, I block the ip address permanently. In that case, I want to enter a drop into iptables rather than a reject.
The fail2ban/action.d/ufw.conf seems to have a place to set either reject or deny, effectively REJECT or DROP, but that would effect all blocks. Is there a way to configure DROP for some filters and REJECT for others?
The fail2ban/action.d/ufw.conf seems to have a place to set either reject or deny, effectively REJECT or DROP, but that would effect all blocks. Is there a way to configure DROP for some filters and REJECT for others?