{"id":211592,"date":"2023-12-22T10:32:26","date_gmt":"2023-12-22T02:32:26","guid":{"rendered":"https:\/\/www.idc.net\/help\/211592\/"},"modified":"2023-12-22T10:32:26","modified_gmt":"2023-12-22T02:32:26","slug":"linux-%e6%9c%8d%e5%8a%a1%e5%99%a8%e5%ae%89%e5%85%a8%e7%ad%96%e7%95%a5%e6%8a%80%e5%b7%a7%ef%bc%9a%e4%bd%bf%e7%94%a8-fail2ban-%e9%98%b2%e6%ad%a2%e6%9a%b4%e5%8a%9b%e7%a0%b4%e8%a7%a3%e6%94%bb%e5%87%bb","status":"publish","type":"post","link":"https:\/\/idc.net\/help\/211592\/","title":{"rendered":"Linux \u670d\u52a1\u5668\u5b89\u5168\u7b56\u7565\u6280\u5de7\uff1a\u4f7f\u7528 fail2ban \u9632\u6b62\u66b4\u529b\u7834\u89e3\u653b\u51fb"},"content":{"rendered":"<p><title id=\"linux-%e6%9c%8d%e5%8a%a1%e5%99%a8%e5%ae%89%e5%85%a8%e7%ad%96%e7%95%a5%e6%8a%80%e5%b7%a7%ef%bc%9a%e4%bd%bf%e7%94%a8-fail2ban-%e9%98%b2%e6%ad%a2%e6%9a%b4%e5%8a%9b%e7%a0%b4%e8%a7%a3%e6%94%bb%e5%87%bb-ulpJWCrgtE\">Linux \u670d\u52a1\u5668\u5b89\u5168\u7b56\u7565\u6280\u5de7\uff1a\u4f7f\u7528 fail2ban \u9632\u6b62\u66b4\u529b\u7834\u89e3\u653b\u51fb<\/title><\/p>\n<h1 id=\"linux-%e6%9c%8d%e5%8a%a1%e5%99%a8%e5%ae%89%e5%85%a8%e7%ad%96%e7%95%a5%e6%8a%80%e5%b7%a7%ef%bc%9a%e4%bd%bf%e7%94%a8-fail2ban-%e9%98%b2%e6%ad%a2%e6%9a%b4%e5%8a%9b%e7%a0%b4%e8%a7%a3%e6%94%bb%e5%87%bb-ulpJWCrgtE\">Linux \u670d\u52a1\u5668\u5b89\u5168\u7b56\u7565\u6280\u5de7\uff1a\u4f7f\u7528 fail2ban \u9632\u6b62\u66b4\u529b\u7834\u89e3\u653b\u51fb<\/h1>\n<p>\u5728\u5f53\u4eca\u6570\u5b57\u5316\u65f6\u4ee3\uff0c\u670d\u52a1\u5668\u5b89\u5168\u5bf9\u4e8e\u4efb\u4f55\u4f01\u4e1a\u6216\u4e2a\u4eba\u6765\u8bf4\u90fd\u662f\u81f3\u5173\u91cd\u8981\u7684\u3002Linux \u670d\u52a1\u5668\u662f\u8bb8\u591a\u4eba\u9009\u62e9\u7684\u9996\u9009\uff0c\u56e0\u4e3a\u5b83\u4eec\u63d0\u4f9b\u4e86\u5f3a\u5927\u7684\u6027\u80fd\u548c\u7075\u6d3b\u6027\u3002\u7136\u800c\uff0c\u670d\u52a1\u5668\u5b89\u5168\u6027\u662f\u4e00\u4e2a\u6301\u7eed\u7684\u6311\u6218\uff0c\u7279\u522b\u662f\u5728\u9762\u5bf9\u66b4\u529b\u7834\u89e3\u653b\u51fb\u65f6\u3002<\/p>\n<h2 id=\"%e4%bb%80%e4%b9%88%e6%98%af%e6%9a%b4%e5%8a%9b%e7%a0%b4%e8%a7%a3%e6%94%bb%e5%87%bb%ef%bc%9f-ulpJWCrgtE\">\u4ec0\u4e48\u662f\u66b4\u529b\u7834\u89e3\u653b\u51fb\uff1f<\/h2>\n<p>\u66b4\u529b\u7834\u89e3\u653b\u51fb\u662f\u6307\u9ed1\u5ba2\u4f7f\u7528\u81ea\u52a8\u5316\u5de5\u5177\u5c1d\u8bd5\u901a\u8fc7\u5c1d\u8bd5\u591a\u4e2a\u7528\u6237\u540d\u548c\u5bc6\u7801\u7ec4\u5408\u6765\u83b7\u53d6\u670d\u52a1\u5668\u8bbf\u95ee\u6743\u9650\u3002\u8fd9\u79cd\u653b\u51fb\u65b9\u5f0f\u901a\u5e38\u662f\u57fa\u4e8e\u66b4\u529b\u548c\u8010\u5fc3\u7684\uff0c\u9ed1\u5ba2\u4f1a\u4e0d\u65ad\u5c1d\u8bd5\u5404\u79cd\u7ec4\u5408\uff0c\u76f4\u5230\u627e\u5230\u6b63\u786e\u7684\u51ed\u636e\u3002<\/p>\n<h2 id=\"fail2ban-%e6%98%af%e4%bb%80%e4%b9%88%ef%bc%9f-ulpJWCrgtE\">fail2ban \u662f\u4ec0\u4e48\uff1f<\/h2>\n<p>fail2ban \u662f\u4e00\u4e2a\u5f00\u6e90\u7684\u5b89\u5168\u5de5\u5177\uff0c\u65e8\u5728\u9632\u6b62\u66b4\u529b\u7834\u89e3\u653b\u51fb\u3002\u5b83\u901a\u8fc7\u76d1\u89c6\u670d\u52a1\u5668\u7684\u65e5\u5fd7\u6587\u4ef6\uff0c\u68c0\u6d4b\u5230\u591a\u6b21\u5931\u8d25\u7684\u767b\u5f55\u5c1d\u8bd5\uff0c\u5e76\u81ea\u52a8\u7981\u6b62\u653b\u51fb\u8005\u7684 IP \u5730\u5740\u3002\u8fd9\u79cd\u81ea\u52a8\u5316\u7684\u9632\u5fa1\u673a\u5236\u53ef\u4ee5\u5927\u5927\u51cf\u5c11\u670d\u52a1\u5668\u53d7\u5230\u66b4\u529b\u7834\u89e3\u653b\u51fb\u7684\u98ce\u9669\u3002<\/p>\n<h2 id=\"%e5%a6%82%e4%bd%95%e4%bd%bf%e7%94%a8-fail2ban-%e4%bf%9d%e6%8a%a4%e6%9c%8d%e5%8a%a1%e5%99%a8%ef%bc%9f-ulpJWCrgtE\">\u5982\u4f55\u4f7f\u7528 fail2ban \u4fdd\u62a4\u670d\u52a1\u5668\uff1f<\/h2>\n<p>\u4ee5\u4e0b\u662f\u4f7f\u7528 fail2ban \u9632\u6b62\u66b4\u529b\u7834\u89e3\u653b\u51fb\u7684\u6b65\u9aa4\uff1a<\/p>\n<ol>\n<li>\u5b89\u88c5 fail2ban\uff1a\u5728 Linux \u670d\u52a1\u5668\u4e0a\uff0c\u53ef\u4ee5\u4f7f\u7528\u5305\u7ba1\u7406\u5668\u6765\u5b89\u88c5 fail2ban\u3002\u4f8b\u5982\uff0c\u5728 Ubuntu \u4e0a\uff0c\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u8fdb\u884c\u5b89\u88c5\uff1a<\/li>\n<pre><code>sudo apt-get install fail2ban<\/code><\/pre>\n<li>\u914d\u7f6e fail2ban\uff1a\u4e00\u65e6\u5b89\u88c5\u5b8c\u6210\uff0c\u4f60\u9700\u8981\u914d\u7f6e fail2ban \u6765\u76d1\u89c6\u670d\u52a1\u5668\u7684\u65e5\u5fd7\u6587\u4ef6\u5e76\u8bbe\u7f6e\u7981\u6b62 IP \u7684\u89c4\u5219\u3002fail2ban \u7684\u914d\u7f6e\u6587\u4ef6\u4f4d\u4e8e \/etc\/fail2ban\/jail.conf\u3002\u4f60\u53ef\u4ee5\u6839\u636e\u81ea\u5df1\u7684\u9700\u6c42\u8fdb\u884c\u914d\u7f6e\uff0c\u4f8b\u5982\u8bbe\u7f6e\u5141\u8bb8\u7684\u767b\u5f55\u5c1d\u8bd5\u6b21\u6570\u548c\u7981\u6b62 IP \u7684\u65f6\u95f4\u3002<\/li>\n<pre><code>[sshd]\nenabled = true\nport = ssh\nfilter = sshd\nlogpath = \/var\/log\/auth.log\nmaxretry = 3\nbantime = 3600<\/code><\/pre>\n<li>\u542f\u52a8 fail2ban\uff1a\u5b8c\u6210\u914d\u7f6e\u540e\uff0c\u4f60\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u547d\u4ee4\u542f\u52a8 fail2ban \u670d\u52a1\uff1a<\/li>\n<pre><code>sudo service fail2ban start<\/code><\/pre>\n<\/ol>\n<h2 id=\"%e5%85%b6%e4%bb%96%e6%9c%8d%e5%8a%a1%e5%99%a8%e5%ae%89%e5%85%a8%e7%ad%96%e7%95%a5%e6%8a%80%e5%b7%a7-ulpJWCrgtE\">\u5176\u4ed6\u670d\u52a1\u5668\u5b89\u5168\u7b56\u7565\u6280\u5de7<\/h2>\n<p>\u9664\u4e86\u4f7f\u7528 fail2ban\uff0c\u8fd8\u6709\u5176\u4ed6\u4e00\u4e9b\u670d\u52a1\u5668\u5b89\u5168\u7b56\u7565\u6280\u5de7\u53ef\u4ee5\u5e2e\u52a9\u4f60\u4fdd\u62a4\u670d\u52a1\u5668\uff1a<\/p>\n<ul>\n<li><strong>\u4f7f\u7528\u5f3a\u5bc6\u7801\uff1a<\/strong>\u786e\u4fdd\u4f60\u7684\u670d\u52a1\u5668\u4e0a\u7684\u6240\u6709\u7528\u6237\u90fd\u4f7f\u7528\u5f3a\u5bc6\u7801\uff0c\u5305\u62ec\u7279\u6b8a\u5b57\u7b26\u3001\u6570\u5b57\u548c\u5927\u5c0f\u5199\u5b57\u6bcd\u7684\u7ec4\u5408\u3002<\/li>\n<li><strong>\u5b9a\u671f\u66f4\u65b0\u8f6f\u4ef6\uff1a<\/strong>\u53ca\u65f6\u66f4\u65b0\u670d\u52a1\u5668\u4e0a\u7684\u64cd\u4f5c\u7cfb\u7edf\u548c\u5e94\u7528\u7a0b\u5e8f\uff0c\u4ee5\u4fee\u590d\u5df2\u77e5\u7684\u5b89\u5168\u6f0f\u6d1e\u3002<\/li>\n<li><strong>\u9650\u5236\u767b\u5f55\u5c1d\u8bd5\uff1a<\/strong>\u901a\u8fc7\u914d\u7f6e\u670d\u52a1\u5668\u7684\u767b\u5f55\u5c1d\u8bd5\u6b21\u6570\u548c\u65f6\u95f4\u95f4\u9694\u6765\u9650\u5236\u66b4\u529b\u7834\u89e3\u653b\u51fb\u3002<\/li>\n<li><strong>\u4f7f\u7528\u9632\u706b\u5899\uff1a<\/strong>\u914d\u7f6e\u670d\u52a1\u5668\u7684\u9632\u706b\u5899\u4ee5\u9650\u5236\u5bf9\u7279\u5b9a\u7aef\u53e3\u7684\u8bbf\u95ee\u3002<\/li>\n<\/ul>\n<h2 id=\"%e6%80%bb%e7%bb%93-ulpJWCrgtE\">\u603b\u7ed3<\/h2>\n<p>\u670d\u52a1\u5668\u5b89\u5168\u662f\u4efb\u4f55\u4f01\u4e1a\u6216\u4e2a\u4eba\u90fd\u5e94\u8be5\u91cd\u89c6\u7684\u91cd\u8981\u95ee\u9898\u3002\u4f7f\u7528 fail2ban \u53ef\u4ee5\u5e2e\u52a9\u4f60\u9632\u6b62\u66b4\u529b\u7834\u89e3\u653b\u51fb\uff0c\u5e76\u63d0\u9ad8\u670d\u52a1\u5668\u7684\u5b89\u5168\u6027\u3002\u9664\u4e86 fail2ban\uff0c\u8fd8\u6709\u5176\u4ed6\u4e00\u4e9b\u670d\u52a1\u5668\u5b89\u5168\u7b56\u7565\u6280\u5de7\u53ef\u4ee5\u5e2e\u52a9\u4f60\u4fdd\u62a4\u670d\u52a1\u5668\u3002\u9999\u6e2f\u670d\u52a1\u5668\u9996\u9009\u540e\u6d6a\u4e91\uff0c\u63d0\u4f9b\u53ef\u9760\u7684\u670d\u52a1\u5668\u89e3\u51b3\u65b9\u6848\u3002\u4f60\u53ef\u4ee5\u5728<a href=\"https:\/\/idc.net\">https:\/\/idc.net<\/a>\u4e86\u89e3\u66f4\u591a\u5173\u4e8e\u540e\u6d6a\u4e91\u7684\u4ea7\u54c1\u548c\u670d\u52a1\uff0c\u5305\u62ec\u9999\u6e2f\u670d\u52a1\u5668\u3001\u7f8e\u56fd\u670d\u52a1\u5668\u548c\u4e91\u670d\u52a1\u5668\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Linux \u670d\u52a1\u5668\u5b89\u5168\u7b56\u7565\u6280\u5de7\uff1a\u4f7f\u7528 fail2ban \u9632\u6b62\u66b4\u529b\u7834\u89e3\u653b\u51fb Linux \u670d\u52a1\u5668\u5b89\u5168\u7b56\u7565\u6280\u5de7\uff1a\u4f7f\u7528 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[27],"tags":[],"class_list":["post-211592","post","type-post","status-publish","format-standard","hentry","category-centos"],"_links":{"self":[{"href":"https:\/\/idc.net\/help\/wp-json\/wp\/v2\/posts\/211592","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/idc.net\/help\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/idc.net\/help\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/idc.net\/help\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/idc.net\/help\/wp-json\/wp\/v2\/comments?post=211592"}],"version-history":[{"count":0,"href":"https:\/\/idc.net\/help\/wp-json\/wp\/v2\/posts\/211592\/revisions"}],"wp:attachment":[{"href":"https:\/\/idc.net\/help\/wp-json\/wp\/v2\/media?parent=211592"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/idc.net\/help\/wp-json\/wp\/v2\/categories?post=211592"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/idc.net\/help\/wp-json\/wp\/v2\/tags?post=211592"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}