mirror of
https://github.com/docker-mailserver/docker-mailserver.git
synced 2024-01-19 02:48:50 +00:00
a9305a073f
* first adjustments to use Fail2Ban with nftables * replace `iptables` -> `nftables` and adjust tests nftables lists IPs a bit differently , so the order was adjusted for the tests to be more flexible. * line correction in mailserver.env * change from `.conf` -> `.local` and remove redundant config * revert HEREDOC to `echo` Co-authored-by: Casper <casperklein@users.noreply.github.com>
31 lines
735 B
Plaintext
31 lines
735 B
Plaintext
[DEFAULT]
|
|
|
|
# "bantime" is the number of seconds that a host is banned.
|
|
bantime = 3h
|
|
|
|
# A host is banned if it has generated "maxretry" during the last "findtime"
|
|
# seconds.
|
|
findtime = 10m
|
|
|
|
# "maxretry" is the number of failures before a host get banned.
|
|
maxretry = 3
|
|
|
|
# "ignoreip" can be a list of IP addresses, CIDR masks or DNS hosts. Fail2ban
|
|
# will not ban a host which matches an address in this list. Several addresses
|
|
# can be defined using space (and/or comma) separator.
|
|
ignoreip = 127.0.0.1/8
|
|
|
|
# default ban action
|
|
# nftables-multiport: block IP only on affected port
|
|
# nftables-allports: block IP on all ports
|
|
banaction = nftables-allports
|
|
|
|
[dovecot]
|
|
enabled = true
|
|
|
|
[postfix]
|
|
enabled = true
|
|
|
|
[postfix-sasl]
|
|
enabled = true
|