docker-mailserver/target/fail2ban/jail.local

[DEFAULT]

# "bantime" is the number of seconds that a host is banned.
bantime = 1w

# A host is banned if it has generated "maxretry" during the last "findtime"
# seconds.
findtime = 1w

# "maxretry" is the number of failures before a host get banned.
maxretry = 6

# "ignoreip" can be a list of IP addresses, CIDR masks or DNS hosts. Fail2ban
# will not ban a host which matches an address in this list. Several addresses
# can be defined using space (and/or comma) separator.
ignoreip = 127.0.0.1/8

# default ban action
# nftables-multiport: block IP only on affected port
# nftables-allports:  block IP on all ports
banaction = nftables-allports

[dovecot]
enabled = true

[postfix]
enabled = true
# For a reference on why this mode was chose, see
# https://github.com/docker-mailserver/docker-mailserver/issues/3256#issuecomment-1511188760
mode = extra

[postfix-sasl]
enabled = true

# This jail is used for manual bans.
# To ban an IP address use: setup.sh fail2ban ban <IP>
[custom]
enabled = true
bantime = 180d
port = smtp,pop3,pop3s,imap,imaps,submission,submissions,sieve
fail2ban cleanup (#1895) 2021-04-11 15:33:39 +00:00			`[DEFAULT]`

			`# "bantime" is the number of seconds that a host is banned.`
change F2B configs: made config more aggressive (#3243) 2023-04-11 18:28:43 +00:00			`bantime = 1w`
fail2ban cleanup (#1895) 2021-04-11 15:33:39 +00:00
			`# A host is banned if it has generated "maxretry" during the last "findtime"`
			`# seconds.`
change F2B configs: made config more aggressive (#3243) 2023-04-11 18:28:43 +00:00			`findtime = 1w`
fail2ban cleanup (#1895) 2021-04-11 15:33:39 +00:00
			`# "maxretry" is the number of failures before a host get banned.`
F2B: update F2B after discussion in #3256 (#3288) 2023-05-01 13:00:35 +00:00			`maxretry = 6`
fail2ban cleanup (#1895) 2021-04-11 15:33:39 +00:00
			`# "ignoreip" can be a list of IP addresses, CIDR masks or DNS hosts. Fail2ban`
			`# will not ban a host which matches an address in this list. Several addresses`
			`# can be defined using space (and/or comma) separator.`
			`ignoreip = 127.0.0.1/8`

firewall: replace `iptables` with `nftables` (#2505) * first adjustments to use Fail2Ban with nftables * replace `iptables` -> `nftables` and adjust tests nftables lists IPs a bit differently , so the order was adjusted for the tests to be more flexible. * line correction in mailserver.env * change from `.conf` -> `.local` and remove redundant config * revert HEREDOC to `echo` Co-authored-by: Casper <casperklein@users.noreply.github.com> 2022-04-05 13:13:59 +00:00			`# default ban action`
			`# nftables-multiport: block IP only on affected port`
			`# nftables-allports: block IP on all ports`
			`banaction = nftables-allports`
Fail2Ban block behaviour (#1914) * new default: block IP on all ports * introduce FAIL2BAN_BLOCKTYPE * fix test * tests added * test added * test blocktype drop * merged two tests 2021-04-18 10:55:43 +00:00
fail2ban cleanup (#1895) 2021-04-11 15:33:39 +00:00			`[dovecot]`
			`enabled = true`

			`[postfix]`
			`enabled = true`
F2B: update F2B after discussion in #3256 (#3288) 2023-05-01 13:00:35 +00:00			`# For a reference on why this mode was chose, see`
			`# https://github.com/docker-mailserver/docker-mailserver/issues/3256#issuecomment-1511188760`
			`mode = extra`
fail2ban cleanup (#1895) 2021-04-11 15:33:39 +00:00
			`[postfix-sasl]`
			`enabled = true`
Add ban feature to fail2ban script (#2538) 2022-04-19 08:44:51 +00:00
			`# This jail is used for manual bans.`
			`# To ban an IP address use: setup.sh fail2ban ban <IP>`
			`[custom]`
			`enabled = true`
			`bantime = 180d`
			`port = smtp,pop3,pop3s,imap,imaps,submission,submissions,sieve`