• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

fail2ban to watch multiple access.log

#1
Does anyone how to configure fail2ban so that it watch multiple access.log for apache and ban any IP requesting more then xx times / xx seconds? Just trying to stop multiple request from offending IP's through refresh.
 

WSWD

Well-known member
#4
You can try SecConnReadStateLimit with Apache and ModSecurity. I don't use fail2ban personally. It is based on concurrent connections and not xx times / xx seconds, but I think it will do what you are looking for. I use it with great success.