From 27a9c2ddb5fd2c1d6a9c590a08b6339230624d20 Mon Sep 17 00:00:00 2001
From: ale <ale@incal.net>
Date: Wed, 21 Apr 2021 21:28:25 +0100
Subject: [PATCH] Add fail2ban action definition

---
 debian/fail2ban/firewall-ipset.conf | 13 +++++++++++++
 debian/firewall.install             |  1 +
 2 files changed, 14 insertions(+)
 create mode 100644 debian/fail2ban/firewall-ipset.conf
 create mode 100644 debian/firewall.install

diff --git a/debian/fail2ban/firewall-ipset.conf b/debian/fail2ban/firewall-ipset.conf
new file mode 100644
index 0000000..79af4dd
--- /dev/null
+++ b/debian/fail2ban/firewall-ipset.conf
@@ -0,0 +1,13 @@
+[Definition]
+
+actionban = ipset add <ipmset> <ip> timeout <ipsettime> -exist
+actionunban = ipset del <ipmset> <ip> -exist
+
+[Init]
+
+ipmset = f2b_ip
+ipsettime = 0
+
+[Init?family=inet6]
+
+ipmset = f2b_ip6
diff --git a/debian/firewall.install b/debian/firewall.install
new file mode 100644
index 0000000..0dc77c4
--- /dev/null
+++ b/debian/firewall.install
@@ -0,0 +1 @@
+debian/fail2ban/firewall-ipset.conf etc/fail2ban/action.d
-- 
GitLab