[ Elza @ 21.05.2009. 12:36 ] @
Imam RHEL 5.3 i fail2ban-0.8.3 .

Evo instalirala sam sve ok za ssh, u iptables napravi chainove sve ok za ssh.
Međutim, za named ne radi, iako npr. mogu ručno pokrenuti reg. izraz i to radi sa naredbom
fail2ban-regex /var/log/messages /etc/fail2ban/filter.d/named-refused.conf
.......
........
0 hit(s): Year/Month/Day Hour:Minute:Second
0 hit(s): Day/Month/Year Hour:Minute:Second
0 hit(s): Day/Month/Year:Hour:Minute:Second
0 hit(s): Year-Month-Day Hour:Minute:Second
0 hit(s): Day-Month-Year Hour:Minute:Second[.Millisecond]
0 hit(s): TAI64N
0 hit(s): Epoch
0 hit(s): ISO 8601

Success, the total number of match is 199

U iptables se normalno formira chain za named-refused ali ne match-aju se adrese.

Napominjem da na drugom stroju gdje je RHEL4 radi bez problema bananje i za ssh i named.
Sve sam identično radila, osim što je drugi linux....
[ Elza @ 21.05.2009. 14:09 ] @
Sve je ok, proradilo je nakon malo dužeg perioda od 20 min nakon startanja fail2ban,
jednostavno ovaj server je malo više opterećen pa je trebalo duže čekat, sve ok bez obzira na RHEL5.

Pozdrav!