LinuxQuestions.org
Help answer threads with 0 replies.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Nginx too many *4185 open() errors
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
Page 2 of 2 1 2
  Search this Thread
Old 06-04-2018, 05:43 PM   #16
Habitual
LQ Veteran
 
Registered: Jan 2011
Location: Abingdon, VA
Distribution: Catalina
Posts: 9,374
Blog Entries: 37

Rep: Reputation: Disabled

Quote:
Originally Posted by newbie14 View Post
Hi Habitual,
I have visited the link you suggested. So the section on the page suggested to add #To enable log monitoring for Nginx login attempts.[nginx-auth]. So I just add right below the default section that should be fine right. Why is it suggesting to change to jail.local then how will it know to pick this as the .conf ?
Basically what is running behind will be bootstrap template based php application. I dont quite get you No more "logs"without verbs.? What do you mean by this logs. I can pull more for you.
You suggested this "Create a custom jail and get f2b up to speed using that IP as a marker/test, or ignore 60.52.28.169
or issue a drop for 60.52.0.0/18". Where to create this is it in the jail.local or jail.conf ?
All answered in /etc/fail2ban/jail.conf
.local and custom "filters" and/or "actions" are excluded from overwriting via update/upgrade to fail2ban.
# Fail2Ban configuration file.
#
# This file was composed for Debian systems from the original one
# provided now under /usr/share/doc/fail2ban/examples/jail.conf
# for additional examples.
#
# Comments: use '#' for comment lines and ';' for inline comments
#
# To avoid merges during upgrades DO NOT MODIFY THIS FILE
# and rather provide your changes in /etc/fail2ban/jail.local
#

# The DEFAULT allows a global definition of the options. They can be overridden
# in each jail afterwards.

As a result, I only put active jails in jail.local

Code:
[custom]
### 2018-06-04
enabled  = true
port     = any
filter   = myfilter
action   = iptables-allports[name=custom, port="any", protocol=tcp]
logpath  = /var/log/nginx/access.log
backend  = polling
maxretry = 2
findtime = 300
bantime = 86,400
Last edited by Habitual; 06-04-2018 at 05:48 PM.
 
  


Reply
Page 2 of 2 1 2



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
how to increase the max open files of nginx master process hilou Linux - Server 2 09-19-2016 03:45 AM
NGINX Open Source: Reflecting Back and Looking Ahead jeremy Linux - News 0 04-14-2015 03:08 PM
LXer: Apache and Nginx Update Open Source Web Servers LXer Syndicated Linux News 0 03-21-2014 04:20 AM
LXer: Nginx Plus Moves Open-Source Web Server Forward LXer Syndicated Linux News 0 08-24-2013 06:30 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 10:27 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration