Share

Question

My fail2ban installation is not working properly since I enabled logrotate. I think the renaming of logfiles is not corresponding to the logs that fail2ban reads.

I guess I need advice on what to put in /etc/fail2ban/jail.local, etc/logrotate.conf, /etc/logrotate.d/apache2.conf, and perhaps other related files.

Answer 1

asciant April 22, 2019

Apologies in advance if this isn’t very helpful, but fail2ban does provide a script in relation to logrotate that may be of some assistance.

It can be found in their Github repository

Reply

Answer 2

jamestr April 22, 2019

I will try this and report back here. Do you know if this is something that just needs to be run once, or if it needs to be run regularly as a cron job?

Or perhaps this is configuration code that needs to be included in /etc/logrotate.conf – does that sound right? Some but not all of the lines in this script are already in that configuration file. The flushlog command is not, and perhaps needs to be.

thanks,

James

Reply

Answer 3

jamestr April 22, 2019

[deleted]

Reply

Fail2ban is not working properly since I enabled logrotate. Can someone provide advice?

Leave a Comment

Share

Share your Question

Fail2ban is not working properly since I enabled logrotate. Can someone provide advice?

Leave a Comment

Related

question

how to login using bitvise?

question

Hung up during Graylog installation

question

"Access denied" when logging into root?

question

How I can install free let`s encrypt SSL in centos 7. step by step

Almost there!