3 COMMENTS

  1. This was a great article thank you.

    Question. What is the correct way to add multiple Definitions?

    What if I wanted to also look for this…

    [Definition]
    failregex = ^ .* “POST /wp-login.php HTTP.* 503

    Thanks for your help.

  2. Thanks for the really in-depth article. Fail2Ban is definitely tricky! Have you looked at something like GuardGiant? It’s a more modern approach that tracks the devices that users use to login. It’s a better approach I think.

LEAVE A REPLY

Please enter your comment!
Please enter your name here