Originally Posted by sag47
Are you using fail2ban? No need to restart the firewall. Also, restarting the firewall can pose a minor risk where, during restart, an established connection can be created.
No. There is no fail2ban in 4MLinux. All servers in 4MLinux (Apache, MySQL, OpenSSH, Postfix, vsftpd, polipo) are controlled by simple, highly customized scripts written by me (customized = much different from the ones you can find in any other distro).
My anti-brute-force script modifies iptables settings and starts or restarts firewall to apply these changes. This may be a surprise for an user to see the firewall running, when the /etc/server/autostart.conf file looks as follows:
# Choose the servers to start during the boot time:
The user can see the firewall ignoring these default setting by starting itself again and again (each boot). I wrote this post to explain what is going on.