If there is a serious power failure, eg during an electric storm, and the internet goes down then my CentOS-6.2 server seems to take an inordinate time, maybe forever, to get past fail2ban. It is as though there is an extremely long - maybe an hour - timeout if fail2ban cannot connect to the internet. (I usually stop the machine with the power-button, re-boot into a different OS (Fedora) and chkconfig off fail2ban.) This only occurs once or twice a year, so I don't worry about it much; but I was wondering if there is a timeout that I can change somewhere in the fail2ban setup? -- Timothy Murphy e-mail: gayleard /at/ eircom.net tel: +353-86-2336090, +353-1-2842366 s-mail: School of Mathematics, Trinity College Dublin
On 03/18/2012 12:17 PM, Timothy Murphy wrote:> If there is a serious power failure, eg during an electric storm, > and the internet goes down > then my CentOS-6.2 server seems to take an inordinate time, maybe forever, > to get past fail2ban. > It is as though there is an extremely long - maybe an hour - timeout > if fail2ban cannot connect to the internet.Just a wild guess but could it be that fail2ban is trying to resolve all the IP addresses in it's database? Iirc there is a config option called use_dns. Try setting it to "no" or "warn". Regards, Patrick
Hi Timothy, fail2ban will go through all defined logfiles during startup. If they are large, it will take some time. You may be able to speed that process up by installing a file alteration monitor like gamut. fail2ban will use it if it finds it. -- Mit freundlichen Gr??en Thomas G?ttgens mailto:tgoettgens at gmail.com