I am not using the system admin module thus I am directly editing the jail.conf and jail.local files.
In the jail.conf file it has this:
enabled = true filter = recidive logpath = /var/log/fail2ban.log action = iptables-allports[name=recidive, protocol=all] sendmail[name=recidive, firstname.lastname@example.org, email@example.com] bantime = 604800 ; 1 week findtime = 86400 ; 1 day maxretry = 10
Which of course I edit with my information in the yourpbx.com.
This section does work, but that is not the issue I have with.
It is the SIP section I am having trouble with which contains, by default, the following:
[asterisk-iptables] enabled = true filter = asterisk action = iptables-allports[name=SIP, protocol=all] sendmail[name=SIP, firstname.lastname@example.org, email@example.com] logpath = /var/log/asterisk/fail2ban maxretry = 5 bantime = 1800
I put the information in the sendmail section,I test with a phone and nothing happens.
In the ssh-iptables it has by default:
[ssh-iptables] enabled = true filter = sshd action = iptables[name=SSH, port=ssh, protocol=tcp] sendmail[name=SSH, firstname.lastname@example.org, email@example.com] logpath = /var/log/secure maxretry = 3
Now this section semi works as is, as a ban email is sent, but no ban occurs. However if I put in port =22, it will now ban on port 22 fail attempts.
In the asterisk-iptables no email is sent, nor a ban occurs no matter, even adding port=5060 in the action section.
What are the proper settings?