UC Series User Manual
30
OpenVox Communication Co. , LTD.
URL: www.openvox.cn
To delete a port just select the checkbox located at the left side corresponding to the port and click on
"Delete" button.
2.1.3.5 Fail2Ban
Fail2ban scans log files (e.g. /var/log/apache/error_log) and bans IPs that show the malicious signs --
too many password failures, seeking for exploits, etc. Generally Fail2Ban is then used to update
firewall rules to reject the IP addresses for a specified amount of time, although any arbitrary other
action (e.g. sending an email) could also be configured. Out of the box Fail2Ban comes with filters
for various services (apache, courier, ssh, etc).
Fail2Ban is able to reduce the rate of incorrect authentications attempts however it cannot eliminate
the risk that weak authentication presents. Configure services to use only two factor or public/private
authentication mechanisms if you really want to protect services.
The option "Fail2Ban" allows configuring Fail2ban service so it can prevent the uc series from
malicious attacks.
Navigate to
System > Security > Fail2Ban
to configure rules
.
Figure 2-1-23 Fail2Ban interface
“Max Retry” limits the authentication attempts. “Find Time” defines the time duration from the first
attempt to the last attempt which reaches the
“
Max Retry” limitation. “Ban Time” is the time in
seconds the IPPBX system will block the IP which exceeds max retry. These settings don’t take
effect on any allowed addresses.
