Displaying 20 results from an estimated 28 matches for "log_prefix".
Did you mean:
lock_prefix
2015 Sep 13
4
Fail2ban
...risk filter;
# Fail2Ban filter for asterisk authentication failures
#
[INCLUDES]
# Read common prefixes. If any customizations available -- read them from
# common.local
before = common.conf
[Definition]
_daemon = asterisk
__pid_re = (?:\[\d+\])
# All Asterisk log messages begin like this:
log_prefix= (?:NOTICE|SECURITY)%(__pid_re)s:?(?:\[C-[\da-f]*\])?
\S+:\d*( in \w+:)?
failregex = ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Registration
from '[^']*' failed for '<HOST>(:\d+)?' - (Wrong
password|Username/auth name mismatch|No m$
^(%(__prefix_line)s|\[\]\s*...
2015 Jan 08
4
SEMI OFF-TOPIC - Fail2ban
...ountID="sip:102 at 173.230.133.20",SessionID="0x169f528",LocalAddress="IPV4/UDP/173.230.133.20/5060",RemoteAddress="IPV4/UDP/198.204.241.58/5074",Challenge="23965594"
I modified the fail2ban with the filter, but still not detected
asterisk.conf
log_prefix= \[\]\s*(?:NOTICE|SECURITY)%(__pid_re)s:?(?:\[\S+\d*\])? \S+:\d*
failregex = ^%(log_prefix)s Registration from '[^']*' failed for
'<HOST>(:\d+)?' - Wrong password$
^%(log_prefix)s Registration from '[^']*' failed for
'<HOST>(:\d+)?' -...
2015 Sep 14
2
Fail2ban
...any customizations available -- read them from
>>
>> # common.local
>> before = common.conf
>>
>>
>> [Definition]
>>
>> _daemon = asterisk
>>
>> __pid_re = (?:\[\d+\])
>>
>> # All Asterisk log messages begin like this:
>> log_prefix= (?:NOTICE|SECURITY)%(__pid_re)s:?(?:\[C-[\da-f]*\])?
>> \S+:\d*( in \w+:)?
>>
>> failregex = ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Registration
>> from '[^']*' failed for '<HOST>(:\d+)?' - (Wrong
>> password|Username/auth name mismatch|N...
2015 Jan 09
0
SEMI OFF-TOPIC - Fail2ban
...ntID="sip:102 at 173.230.133.20",Ses
sionID="0x169f528",LocalAddress="IPV4/UDP/173.230.133.20/5060",RemoteAddress
="IPV4/UDP/198.204.241.58/5074",Challenge="23965594"
I modified the fail2ban with the filter, but still not detected
asterisk.conf
log_prefix= \[\]\s*(?:NOTICE|SECURITY)%(__pid_re)s:?(?:\[\S+\d*\])? \S+:\d*
failregex = ^%(log_prefix)s Registration from '[^']*' failed for
'<HOST>(:\d+)?' - Wrong password$
^%(log_prefix)s Registration from '[^']*' failed for
'<HOST>(:\d+)?' -...
2017 Mar 01
3
fail2ban Asterisk 13.13.1
...uot;udp", chain="%(chain)s", actname=%(banaction)s-udp]
%(mta)s-whois[name=%(__name__)s, dest="%(destemail)s"]
logpath = /var/log/asterisk/messages
maxretry = 3
findtime = 300
bantime = -1
in filter.d
asterisk.conf
failregex = ^%(__prefix_line)s%(log_prefix)s Registration from '[^']*'
failed for '<HOST>(:\d+)?' - (Wrong password|Username/auth name mismatch|No
matching peer found|Not a local domain|Device does not match ACL|Peer is not
supposed to register|ACL error \(permit/deny\)|Not a local domain)$
^%(__prefix...
2017 Mar 02
3
fail2ban Asterisk 13.13.1
...uot;udp", chain="%(chain)s", actname=%(banaction)s-udp]
%(mta)s-whois[name=%(__name__)s, dest="%(destemail)s"]
logpath = /var/log/asterisk/messages
maxretry = 3
findtime = 300
bantime = -1
in filter.d
asterisk.conf
failregex = ^%(__prefix_line)s%(log_prefix)s Registration from '[^']*'
failed for '<HOST>(:\d+)?' - (Wrong password|Username/auth name mismatch|No
matching peer found|Not a local domain|Device does not match ACL|Peer is not
supposed to register|ACL error \(permit/deny\)|Not a local domain)$
^%(__prefix...
2020 Aug 28
3
[Bug 1458] New: Consider allowing for variable interpolation
...t
Assignee: pablo at netfilter.org
Reporter: kfm at plushkava.net
This is another feature request extracted from bug 1434 (the "usability" bug).
Currently, variable interpolation isn't supported by the parser. The originally
given example was as follows.
define LOG_PREFIX = "[foo] "
table inet filter {
chain input {
type filter hook input priority 0; policy drop;
counter log prefix "$LOG_PREFIX DROP"
}
}
If this is ever implemented, it might also make sense to allow for strings to
be single-quoted so as to be able to supp...
2013 Dec 12
3
Puppetlabs-firewall and Logging
...39;10.x8.xx1.0/24'', proto => ''tcp'', state => ''NEW'', port => ''22'',
jump => ''ssh_in'' }
firewall { ''009 ssh_in'': chain => ''ssh_in'', jump => ''LOG'', log_prefix =>
''ssh_in '' }
firewall { ''011 ssh_in'': chain => ''ssh_in'', action => ''accept'' }
*This works for DNS:*
firewall { ''016 fwd to dns_out'': chain => ''OUTPUT'', outiface => ...
2011 Mar 24
4
Remote-logging nginx? (or other non-syslog-enabled stuff)
I'm looking for suggestions as to a good general method of
remote-logging services such as nginx or anything else which doesn't
support syslog natively.
I'm aware that there's an nginx patch, and we're evaluating this. It
may be the way we fly.
However there are other tools which may not have a patch for which
remote logging would be useful. If there's a general soution
2019 Jun 06
2
Fail2ban for asterisk 16 PJSIP
Hello
Anyone have a working copy of Fail2ban asterisk filter asterisk.conf
for Asterisk 16 running PJSIP.
I have tried 10 different filters but none of them show any matches when testing with
fail2ban-regex
I see date template hits but no matches....
My log
[2019-06-06 15:37:20] NOTICE[18081] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '"2405" <sip:2405 at
2018 Jan 29
1
Dovecot 2.3.0 assertion failure on LMTP delivery
...;optimized out>) at failures.c:718
status = 0
#4 0x00007f2978517190 in i_panic (format=format at entry=0x7f29785df6a8 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:306
ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0, timestamp_usecs = 0, log_prefix = 0x0}
args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7ffe12c97af0, reg_save_area = 0x7ffe12c97a30}}
#5 0x00007f29785bf6bb in event_unref (_event=_event at entry=0x55ac2dab3ea8) at lib-event.c:148
event = 0x55ac2dab8180
__func__ = "event_unref"
#6...
2018 Mar 05
3
Coredump: Panic: file smtp-address.c: line 530 (smtp_address_write): assertion failed: (smtp_char_is_qpair(*p))
...0
#4 0x00007fea19d44721 in i_panic (format=format at entry=0x7fea19e0ec98 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:306
ctx = {
type = LOG_TYPE_PANIC,
exit_status = 0,
timestamp = 0x0,
timestamp_usecs = 0,
log_prefix = 0x0
}
args = <error reading variable args (Attempt to dereference a generic pointer.)>
#5 0x00007fea19d4831d in smtp_address_write (out=0x56239bd7c150, address=0x56239bd7c108) at smtp-address.c:530
quoted = <optimized out>
p = 0x56239bd7c11b "?lle...
2020 Sep 02
1
Indexer error after upgrade to 2.3.11.3
On 19/08/2020 17:37, Josef 'Jeff' Sipek wrote:
> On Wed, Aug 19, 2020 at 17:03:57 +0200, Alessio Cecchi wrote:
>> Hi,
>>
>> after the upgrade to Dovecot 2.3.11.3, from 2.3.10.1, I see frequently
>> these errors from different users:
> It looks like this has been around for a while and you just got unlucky and
> started seeing this now. Here's a quick
2018 Jul 05
2
2.3.2 is still crashing (lmtp)
...at failures.c:261
status = 0
#4 0x00007f65028da444 in i_panic (
format=format at entry=0x7f65029a6fa8 "file %s: line %d (%s): assertion failed: (%s)")
at failures.c:325
ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0, timestamp_usecs = 0,
log_prefix = 0x0}
args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7ffdb7454bc0,
reg_save_area = 0x7ffdb7454b00}}
#5 0x00007f6502986e42 in event_pop_global (event=<optimized out>) at lib-event.c:182
__func__ = "event_pop_global"
#6 0x00007f6502c68f8...
2018 Dec 26
2
Segfault report
...0? event_want_debug_log (event=event at entry=0x0,
source_filename=source_filename at entry=0x7efd84178aa3 "mail-storage.c",
??? source_linenum=source_linenum at entry=1261) at event-log.c:120
??????? ctx = {type = LOG_TYPE_DEBUG, exit_status = 0, timestamp = 0x0,
timestamp_usecs = 0, log_prefix = 0x0,
????????? log_prefix_type_pos = 0}
#1? 0x00007efd83dc0986 in event_want_debug (event=event at entry=0x0,
??? source_filename=source_filename at entry=0x7efd84178aa3
"mail-storage.c", source_linenum=source_linenum at entry=1261)
??? at event-log.c:140
No locals.
#2? 0x00007efd84...
2018 Feb 19
0
[bt full included] imap-login: Panic: file client-common.c: line 272 (client_destroy): assertion failed: (client->create_finished)
...imized out>) at failures.c:718
status = 0
#4 0x00007fddd97e9df9 in i_panic (format=format at entry=0x7fddd9b35a88
"file %s: line %d (%s): assertion failed: (%s)") at failures.c:306
ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0,
timestamp_usecs = 0, log_prefix = 0x0}
args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area =
0x7ffdbd74ce70, reg_save_area = 0x7ffdbd74cdb0}}
#5 0x00007fddd9b2e2e9 in client_destroy (client=<optimized out>,
reason=reason at entry=0x7fddd9b35e21 "Disconnected: Shutting down") at
client-common.c:...
2018 Mar 06
0
Coredump: Panic: file smtp-address.c: line 530 (smtp_address_write): assertion failed: (smtp_char_is_qpair(*p))
...panic (format=format at entry=0x7fea19e0ec98 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:306
> ctx = {
> type = LOG_TYPE_PANIC,
> exit_status = 0,
> timestamp = 0x0,
> timestamp_usecs = 0,
> log_prefix = 0x0
> }
> args = <error reading variable args (Attempt to dereference a generic pointer.)>
> #5 0x00007fea19d4831d in smtp_address_write (out=0x56239bd7c150, address=0x56239bd7c108) at smtp-address.c:530
> quoted = <optimized out>
> p =...
2018 Dec 26
0
Segfault report
...log (event=event at entry=0x0,
> source_filename=source_filename at entry=0x7efd84178aa3 "mail-storage.c",
> ??? source_linenum=source_linenum at entry=1261) at event-log.c:120
> ??????? ctx = {type = LOG_TYPE_DEBUG, exit_status = 0, timestamp = 0x0,
> timestamp_usecs = 0, log_prefix = 0x0,
> ????????? log_prefix_type_pos = 0}
> #1? 0x00007efd83dc0986 in event_want_debug (event=event at entry=0x0,
> ??? source_filename=source_filename at entry=0x7efd84178aa3
> "mail-storage.c", source_linenum=source_linenum at entry=1261)
> ??? at event-log.c:140
&g...
2020 Mar 11
0
Dovecot Imap-Proxy: openssl_iostream_handle_error
...rgs=<optimized out>) at failures.c:848
No locals.
#5 0x00007fb7bc9622e3 in i_panic (format=format at entry=0x7fb7bb85ae70 "file %s: line %d (%s): assertion failed: (%s)") at failures.c:523
ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0, timestamp_usecs = 0, log_prefix = 0x0, log_prefix_type_pos = 0}
args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7fff75b21d20, reg_save_area = 0x7fff75b21c60}}
#6 0x00007fb7bb858708 in openssl_iostream_handle_error (ssl_io=ssl_io at entry=0x5646c0a22aa0, ret=-1,
type=type at entry=OPENSSL_IOSTREAM_SYNC_TY...
2018 Jan 29
1
Panic: data stack: Out of memory when allocating bytes
..., args=<value optimized out>) at failures.c:718
> ??????? status = 0
> #11 0x00007f73f1723e11 in i_panic (format=0x1310 <Address 0x1310 out of
> bounds>) at failures.c:306
> ??????? ctx = {type = LOG_TYPE_PANIC, exit_status = 0, timestamp = 0x0,
> timestamp_usecs = 0, log_prefix = 0x0}
> ??????? args = {{gp_offset = 16, fp_offset = 48, overflow_arg_area =
> 0x7ffd0ddd84a0, reg_save_area = 0x7ffd0ddd83e0}}
> #12 0x00007f73f17ab83a in mem_block_alloc (min_size=512) at
> data-stack.c:360
> ??????? block = <value optimized out>
> ??????? prev_size...