mirror of
https://github.com/daylinmorgan/oizys.git
synced 2024-09-29 00:07:18 -05:00
wipo
This commit is contained in:
parent
7d77335e21
commit
3baa9f9b4f
1 changed files with 97 additions and 96 deletions
|
@ -29,11 +29,12 @@
|
|||
|
||||
# fail2ban config based on:
|
||||
# https://www.linode.com/docs/guides/how-to-use-fail2ban-for-ssh-brute-force-protection/
|
||||
services.fail2ban {
|
||||
services.fail2ban = {
|
||||
enable = true;
|
||||
maxretry = 5;
|
||||
bantime = "24h";
|
||||
jails = {
|
||||
jails =
|
||||
{
|
||||
sshd = ''
|
||||
port = ssh
|
||||
filter = sshd
|
||||
|
@ -41,10 +42,10 @@
|
|||
maxretry = 3
|
||||
findtime = 300
|
||||
bantime = 3600
|
||||
ignoreip = 127.0.0.1
|
||||
''
|
||||
}
|
||||
}
|
||||
'';
|
||||
};
|
||||
};
|
||||
|
||||
boot.kernelPackages = pkgs.linuxPackages_latest;
|
||||
|
||||
# TODO: convert this to a systemd service/timer
|
||||
|
@ -145,5 +146,5 @@
|
|||
# Before changing this value read the documentation for this option
|
||||
# (e.g. man configuration.nix or on https://nixos.org/nixos/options.html).
|
||||
system.stateVersion = "22.11"; # Did you read the comment?
|
||||
}
|
||||
}
|
||||
|
||||
|
|
Loading…
Reference in a new issue