-
-
Notifications
You must be signed in to change notification settings - Fork 2.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fail2ban Traccar Filter #1554
Comments
Fail2ban uses regular expressions for filtering, so it should be possible to configure it with Traccar. I haven't tried it though. If someone has experience or working config, it would be great if he could share it with community. |
Nobody who knows how to scan traccar with fail2ban an integrate with iptables to make it more secure ? |
I'm also looking for it . Thanks. |
I can try to make one, but dont think it is a good idea, because most mobile operators NAT a lot of devices behind couple of IP addresses, so you can block your own devices too(you can block whole providers by mistake). In my logs there are many devices that come from same ip address. |
Okay, that sounds strange.. I thought about a filter looking for waring if unknown devices want to sent data to server. then block the ip adress after 3 or more times. And maybe also scanning other stuff doing bad things to the open Port. (using devices over Port 5055) |
@tananaev Can we add remote ip address to "Unknown device" line easy, to parse it easier when we have a lot of traffic on server? |
@dschense enabled = true and copy https://nelim.han.bg/pro/traccard.conf on your fail2ban/filter.d/ directory You must keep in mind 2 imoprtant things
Good luck :) ps. Oh, forgot, you can change port = on what ports you are using, or all traccar ports. |
Wow, that's great, I will play with your solution and report back ;-) Thanks so far! |
@nelim Thanks you for great work How to block IP for some time ? let's say if a user makes 3 or more hits within 1-3 seconds , and block that IP for 5 minutes |
@chathudan http://www.fail2ban.org/wiki/index.php/MANUAL_0_8#Jail_Options |
Is it possible to create a Fail2ban filter for Traccar with the open Port in iptables?
I opend Port 5055 for android device on the server in iptables.
anybody who secured the server by this way?
The text was updated successfully, but these errors were encountered: