fail2ban, ufw, iptables and reboot
by RickPoleshuck from LinuxQuestions.org on (#5S3TE)
My server uses fail2ban, ufw and iptables to protect against hackers. Daily, I get an average of about 30 new IP address attacks. These attacks tend to be totally worthless and I am quite happy with my protection except for one issue. I have permanently banned over 7000 IP addresses and after a reboot it takes a couple of minutes for iptables to get repopulated with all those IP addresses.
How do other people handle security during reboots?
1. Ignore this issue. It is a small window. But that window keeps growing.
2. Wait to turn on networking until iptables has been repopulated?
3. Other tools.
How do other people handle security during reboots?
1. Ignore this issue. It is a small window. But that window keeps growing.
2. Wait to turn on networking until iptables has been repopulated?
3. Other tools.