Fail2Ban banning servers' IP

I have a number of Fail2Ban reports from several of our FreePBX servers where the server’s IP itself is banned. So far, there’s one ban for most of the servers. One particular server, however, has recurring bans for the last 12 hours.

Is this some sort of spoof attack?

@PCS

Go to System Admin–>Intrusion Detection–>Whitelist

Add your servers network with CIDR. Example, 192.168.1.0/24
This will protect devices on the local lan, which should be trusted, from being banned. Unless you’re using a public cloud then specify IP addresses. Do not inadvertently give access to the entire cloud on the subnet you’re hosted on.

Regards,
Calvin

This topic was automatically closed 365 days after the last reply. New replies are no longer allowed.