public_facing: Support blocking multiple ports in ufw fail2ban action

author David Galloway <dgallowa@redhat.com>

Wed, 5 Sep 2018 14:29:20 +0000 (10:29 -0400)

committer David Galloway <dgallowa@redhat.com>

Wed, 5 Sep 2018 14:29:20 +0000 (10:29 -0400)
author David Galloway <dgallowa@redhat.com>
Wed, 5 Sep 2018 14:29:20 +0000 (10:29 -0400)
committer David Galloway <dgallowa@redhat.com>
Wed, 5 Sep 2018 14:29:20 +0000 (10:29 -0400)
diff --git a/roles/public_facing/templates/f2b_ufw.conf.j2 b/roles/public_facing/templates/f2b_ufw.conf.j2

index 140a02a82f8b8af6786b35531816e16fed307b46..cc035865ef2343730353e4a1f13e7981d3485021 100644 (file)
--- a/roles/public_facing/templates/f2b_ufw.conf.j2
+++ b/roles/public_facing/templates/f2b_ufw.conf.j2
@@ -8,4 +8,6 @@ actionstart =
  actionstop = 
  actioncheck = 
  actionban = ufw insert 1 deny from <ip> to any port <port>
+            ufw insert 1 deny proto tcp from <ip> to any port <port>
  actionunban = ufw delete deny from <ip> to any port <port>
+              ufw delete deny proto tcp from <ip> to any port <port>
author	David Galloway <dgallowa@redhat.com>
	Wed, 5 Sep 2018 14:29:20 +0000 (10:29 -0400)
committer	David Galloway <dgallowa@redhat.com>
	Wed, 5 Sep 2018 14:29:20 +0000 (10:29 -0400)