Managing IP Address Banning (Fail2Ban)

Operator: <ip-ban>

XML Schema: ip_ban.xsd

Plesk version: Plesk 12.0 and later

XML API version: 1.6.6.0 and later

Plesk user: Plesk Administrator

Description

The ip-ban operator is used to configure protection from brute force attacks, which is provided by the Fail2Ban software. It is available only on Linux servers.

Fail2Ban uses regular expressions to monitor log files for patterns corresponding to authentication failures and other errors that are considered suspicious. If an IP address makes too many login attempts within a time interval defined by the administrator, this IP address is banned for a certain period of time. Fail2Ban can also update firewall rules and send email notifications. When the ban period is over, the IP address is automatically unbanned.

Supported operations

• get-settings retrieves information about Fail2Ban settings.
• set-settings configures Fail2Ban.

 Note: You can also retrieve information about the current state of the Fail2Ban service by means of the server get operation, and start, stop, or restart the service by using the server srv_man operation.