diff options
author | Ismaël Bouya <ismael.bouya@normalesup.org> | 2016-08-10 13:27:09 +0200 |
---|---|---|
committer | Ismaël Bouya <ismael.bouya@normalesup.org> | 2016-08-10 21:37:59 +0200 |
commit | a37e5d7a961b6f6373c4f91e6c114d81e2e3261b (patch) | |
tree | 0b82688e001ed9d6f1aab655b0b322ebbc95d9fc /modules/base_configuration/manifests | |
parent | 3b0f154d7fb685939b031dba0f141f37321d8da8 (diff) | |
download | Puppet-a37e5d7a961b6f6373c4f91e6c114d81e2e3261b.tar.gz Puppet-a37e5d7a961b6f6373c4f91e6c114d81e2e3261b.tar.zst Puppet-a37e5d7a961b6f6373c4f91e6c114d81e2e3261b.zip |
Add fail2ban
Diffstat (limited to 'modules/base_configuration/manifests')
-rw-r--r-- | modules/base_configuration/manifests/init.pp | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/modules/base_configuration/manifests/init.pp b/modules/base_configuration/manifests/init.pp index dca17b3..f432e29 100644 --- a/modules/base_configuration/manifests/init.pp +++ b/modules/base_configuration/manifests/init.pp | |||
@@ -58,4 +58,19 @@ class base_configuration ( | |||
58 | order => 15, | 58 | order => 15, |
59 | include => '/etc/pacman.d/mirrorlist' | 59 | include => '/etc/pacman.d/mirrorlist' |
60 | } | 60 | } |
61 | |||
62 | ensure_packages(["whois"], { 'install_options' => '--asdeps' }) | ||
63 | class { 'fail2ban': | ||
64 | logtarget => 'SYSLOG', | ||
65 | backend => 'systemd' | ||
66 | } | ||
67 | fail2ban::jail { 'sshd': | ||
68 | backend => 'systemd', | ||
69 | port => 'ssh', | ||
70 | filter => 'sshd', | ||
71 | maxretry => 10, | ||
72 | bantime => 86400, | ||
73 | logpath => '', | ||
74 | order => 10 | ||
75 | } | ||
61 | } | 76 | } |