Difference between revisions of "Features"

From Fail2ban
Jump to: navigation, search
(0.9 release)
(grammar edits, link to feature pages)
Line 4: Line 4:
 
* Python based actions
 
* Python based actions
 
* Database support
 
* Database support
* [https://github.com/fail2ban/fail2ban/issues/54 Multi-lines parsing in filters]
+
* [https://github.com/fail2ban/fail2ban/issues/54 Multi-line parsing in filters]
 
* Custom date time support for filters
 
* Custom date time support for filters
 
* Timezone awareness by default
 
* Timezone awareness by default
Line 14: Line 14:
  
 
Here is a list of the main features available in {{Fail2ban}}.
 
Here is a list of the main features available in {{Fail2ban}}.
 
+
* [http://www.fail2ban.org/wiki/index.php/FEATURE_Client_Server Client/Server architecture.]
* Client/Server architecture.
+
 
* Multi-threaded.
 
* Multi-threaded.
 
* Highly configurable.
 
* Highly configurable.
 
* Gamin/Pyinotify support.
 
* Gamin/Pyinotify support.
* Parses log files and looks for given patterns.
+
* Parses log files and look for given patterns.
* Executes commands when a pattern has been detected for the same IP address for more than ''X'' times. ''X'' can be changed.
+
* Executes command(s) when a pattern has been detected for the same IP address for more than ''X'' times to ban that address. ''X'' can be changed.
* After a given amount of time, executes another command in order to unban the IP address.
+
* After a given amount of time, execute another command in order to unban the IP address.
 
* Uses Netfilter/Iptables by default but can also use TCP Wrapper (<tt>/etc/hosts.deny</tt>) and many other firewalls/actions.
 
* Uses Netfilter/Iptables by default but can also use TCP Wrapper (<tt>/etc/hosts.deny</tt>) and many other firewalls/actions.
 
* Handles log files rotation.
 
* Handles log files rotation.
* Can handle multiple service (sshd, apache, vsftpd, etc).
+
* Can handle multiple services at once (sshd, apache, vsftpd, etc).
 
* Resolves DNS hostname to IP address (use with caution, disable by usedns = no).
 
* Resolves DNS hostname to IP address (use with caution, disable by usedns = no).
  

Revision as of 04:03, 10 February 2017

Current features (0.9.x)

(in addition to 0.8.x features)

  • Python based actions
  • Database support
  • Multi-line parsing in filters
  • Custom date time support for filters
  • Timezone awareness by default
  • Timeout on ban commands
  • Character set awareness in log files
  • Python3+ support

Current features (0.8.x)

Here is a list of the main features available in Fail2ban.

  • Client/Server architecture.
  • Multi-threaded.
  • Highly configurable.
  • Gamin/Pyinotify support.
  • Parses log files and look for given patterns.
  • Executes command(s) when a pattern has been detected for the same IP address for more than X times to ban that address. X can be changed.
  • After a given amount of time, execute another command in order to unban the IP address.
  • Uses Netfilter/Iptables by default but can also use TCP Wrapper (/etc/hosts.deny) and many other firewalls/actions.
  • Handles log files rotation.
  • Can handle multiple services at once (sshd, apache, vsftpd, etc).
  • Resolves DNS hostname to IP address (use with caution, disable by usedns = no).

Roadmap

Here is the planned roadmap. If you want to contribute or help on one of these features, please contact the fail2ban-users mailing list or browse/comment/report on existing issues on github.

Please browse Fail2ban milestones for an up-to-date list of planned releases/features.

Other envisioned changes

  • Decrease memory usage