You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
[ x ] Fail2Ban installed via OS/distribution mechanisms
[ x ] You have not applied any additional foreign patches to the codebase
[ x ] Some customizations were done to the configuration (provide details below is so)
Fail2ban is configured to use nftables via a configuration file nftables.conf in /etc/fail2ban/jail.d containing:
Environment:
Fail2ban is configured to use nftables via a configuration file nftables.conf in /etc/fail2ban/jail.d containing:
The issue:
Upon reloading/restarting nftables (installed via apt) or simply after rebooting the system, fail2ban stops working. This can be seen in the logs:
Upon restarting, the nftables-ruleset is flushed, so the initial rules from fail2ban are missing. This seems to be the root cause of the problem.
Steps to reproduce
Reboot system or
systemctl restart nftables
.Expected/Observed behavior
Fail2ban continues working, evtl. after being restarted.
Relevant parts of /var/log/fail2ban.log file:
Full version of the above excerpt:
Workaround
Create a drop-in unitfile to (re)start fail2ban after nftables:
mkdir /etc/systemd/system/fail2ban.service.d
The text was updated successfully, but these errors were encountered: