Skip to content

michaelrigart/ansible-role-fail2ban

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

63 Commits
defaults
defaults
 
 
files
files
 
 
handlers
handlers
 
 
meta
meta
 
 
tasks
tasks
 
 
templates
templates
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Ansible Fail2Ban Role

An ansible role for installing and configuring fail2ban. This role enables you to customize your local jail as well as configuring custom filters and actions.

For more information on Fail2Ban, visit the Fail2Ban website

Dependencies

Fail2ban > 0.8

Role Variables

fail2ban_path: path where Fail2Ban is installed on the remote host(s)
fail2ban_filter_path: path where Fail2Ban stores all filters on the remote host(s)
fail2ban_action_path: path where Fail2Ban stores all actions on the remote host(s)
fail2ban_jail_path: path where Fail2Ban stores all custom jails on the remote host(s)
fail2ban_upload_filters_path: local path for the Fail2Ban filter files that should be uploaded
fail2ban_upload_actions_path: local path for the Fail2Ban action files that should be uploaded
fail2ban_pkg_state: indicates the package state; Allowed setting: present, latest
fail2ban_pkg_version: specify the specific package version you wish to install. When specifying a version, the state will be forced to present. When omitting the variable or leaving it empty it will install the package as specified by the state variable. Example value: '=0.8.13-1'
fail2ban_service_state: indicates the service state; Allowed setting: started, stopped
fail2ban_service_enabled: indicates if service needs to be enabled on boot; Allowed settings: yes, no
fail2ban_config: is a dict that can hold all settings for your jail.local file
fail2ban_jails: is a dict that can hold all jail configuration that goes in your jail.d directory (one jail per file). The dict key will be used as section name and filter value. So make sure this matches. The filter key will also be used to check if there are any custom filters that need to be copied to the remote host(s). Your custom filters should be stored under files/filters
remove_fail2ban_jails: list of custom fail2ban jails defined in the jail.d folder that can be removed
fail2ban_actions: holds a list with all custom actions that need to be copied to the remote host(s). Your custom actions should be stored under files/actions

View the default vars - defaults/main.yml - for a more detailed example.

Example Playbook

- hosts: servers
  roles:
     - { role: MichaelRigart.fail2ban, become: true }

License

GPLv3

Author Information

Michaël Rigart [email protected]

About

An Ansible role to install and configure Fail2Ban

Resources

Readme

License

GPL-3.0 license
Activity

Stars

5 stars

Watchers

4 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 5