add fail2ban scripts
This commit is contained in:
RaineAllDay
8
scripts/fail2ban/nginx-scan.conf
Normal file
8
scripts/fail2ban/nginx-scan.conf
Normal file
@@ -0,0 +1,8 @@
|
||||
[Definition]
|
||||
# Match lines from nginx access log with 4xx/5xx responses
|
||||
# Nginx combined log format:
|
||||
# 1.2.3.4 - - [18/Mar/2026:09:45:00 +0000] "GET /backend/config/default.yml HTTP/1.1" 404 ...
|
||||
failregex = ^<HOST> .+ "(GET|POST|HEAD|PUT|DELETE|OPTIONS|PATCH) .+ HTTP/\d\.\d" 40[0-9] .+$
|
||||
^<HOST> .+ "(GET|POST|HEAD|PUT|DELETE|OPTIONS|PATCH) .+ HTTP/\d\.\d" 5[0-9]{2} .+$
|
||||
|
||||
ignoreregex =
|
||||
Reference in New Issue
Block a user