Skip to content

michaelrigart/ansible-role-fail2ban

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

63 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Ansible Fail2Ban Role

An ansible role for installing and configuring fail2ban. This role enables you to customize your local jail as well as configuring custom filters and actions.

For more information on Fail2Ban, visit the Fail2Ban website

Dependencies

Fail2ban > 0.8

Role Variables

fail2ban_path: path where Fail2Ban is installed on the remote host(s)
fail2ban_filter_path: path where Fail2Ban stores all filters on the remote host(s)
fail2ban_action_path: path where Fail2Ban stores all actions on the remote host(s)
fail2ban_jail_path: path where Fail2Ban stores all custom jails on the remote host(s)
fail2ban_upload_filters_path: local path for the Fail2Ban filter files that should be uploaded
fail2ban_upload_actions_path: local path for the Fail2Ban action files that should be uploaded
fail2ban_pkg_state: indicates the package state; Allowed setting: present, latest
fail2ban_pkg_version: specify the specific package version you wish to install. When specifying a version, the state will be forced to present. When omitting the variable or leaving it empty it will install the package as specified by the state variable. Example value: '=0.8.13-1'
fail2ban_service_state: indicates the service state; Allowed setting: started, stopped
fail2ban_service_enabled: indicates if service needs to be enabled on boot; Allowed settings: yes, no
fail2ban_config: is a dict that can hold all settings for your jail.local file
fail2ban_jails: is a dict that can hold all jail configuration that goes in your jail.d directory (one jail per file). The dict key will be used as section name and filter value. So make sure this matches. The filter key will also be used to check if there are any custom filters that need to be copied to the remote host(s). Your custom filters should be stored under files/filters
remove_fail2ban_jails: list of custom fail2ban jails defined in the jail.d folder that can be removed
fail2ban_actions: holds a list with all custom actions that need to be copied to the remote host(s). Your custom actions should be stored under files/actions

View the default vars - defaults/main.yml - for a more detailed example.

Example Playbook

- hosts: servers
  roles:
     - { role: MichaelRigart.fail2ban, become: true }

License

GPLv3

Author Information

Michaël Rigart michael@netronix.be

About

An Ansible role to install and configure Fail2Ban

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published