upstream/opnsense-plugins
1
0
Fork 0
mirror of https://github.com/opnsense/plugins.git synced 2026-05-26 03:25:28 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Update maltrail.conf

Browse source 
security/maltrail: add FAIL2BAN_ALLOWLIST to server config template to allow localhost access to fail2ban endpoint
This commit is contained in:
whitej46 2026-05-24 10:15:23 -04:00 committed by GitHub
parent cb9a5d6d69
commit 0a88f2c7b8
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
security/maltrail/src/opnsense/service/templates/OPNsense/Maltrail/maltrail.conf
View file

@ -9,6 +9,8 @@ USE_SSL false
# Regular expression to be used in external /fail2ban calls for extraction of attacker source IPs
FAIL2BAN_REGEX attacker|reputation|potential[^"]*(web scan|directory traversal|injection|remote code)|spammer|mass scanner
# Allow localhost to access fail2ban endpoint
FAIL2BAN_ALLOWLIST 127.0.0.1
{% if helpers.exists('OPNsense.maltrail.server.loglistenaddress') and OPNsense.maltrail.server.loglistenaddress != '' %}
UDP_ADDRESS {{ OPNsense.maltrail.server.loglistenaddress }}