-
-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
BUG: fail2ban-client set JAIL addignoreip should be unique #2680
Comments
Why? Or rather how it should be a "BUG" of fail2ban? I don't see why we should implement this on fail2ban side. especially don't see that as a bug (let alone I don't like if someone trying to relocate the own needs on our shoulders).
Well, you can do the same pre-filtering that you wanted we have to do on fail2ban side. I don't see large troubles to do that on client side (validate it against your previous list or the list returned by Or as already said just you use |
BTW, #1904 solves exactly this (so it is already "fixed" in v.0.10) |
I've extended the ignoreip logic now (fc175fa), so this is no longer true: simplest case (handling of single IPs) is reimplemented as a set, so such huge list is performant enough now (mostly |
If it is not "BUG", why "fixed"! |
Let me tell you why I needed this 'update' - My webserver do not have Static IP. So, this IP list should be unique. |
As already said it is not a large problem to check whether the IP is already in list (compare it against current list).
If you have some (dynamic) DNS entry mapped to this IP you can add this host name to |
Is there any command to add the new IP and set it as |
I don't understand the question. |
Dear Team,
I was writing a custom shell-script that uses this command to add ignoreip for a jail.
fail2ban-client set my-filter addignoreip 1.1.1.1
While testing, I realized that every time, I run the command, there this multiple/duplicate IP (1.1.1.1) in the list!
The IP list should be unique!
THE REAL PROBLEM:
Since there is duplicate IP in the list, I need to execute the
delignoreip
command multiple times to actually remove the IP from the ignoreip list!fail2ban-client version: 0.9.6
The text was updated successfully, but these errors were encountered: