即使在将该IP列入白名单后,Fail2ban仍会继续阻止一个IP。
我在/etc/fail2ban/jail.conf有一行如下所示。
ignoreip = 53.45.114.103
但是fail2ban继续阻止这个ip。
我在日志中看到: 2016-01-07 13:34:38,180 fail2ban.actions [44813]: NOTICE [ssh] Ban 53.45.114.103 2016-01-07 13:34:38,496 fail2ban.filter [44813]: INFO [ssh] Found 53.45.114.103 2016-01-07 13:34:38,515 fail2ban.filter [44813]: INFO [ssh] Found 53.45.114.103 2016-01-07 13:34:38,529 fail2ban.filter [44813]: INFO [ssh] Found 53.45.114.103 2016-01-07 13:34:38,534 fail2ban.filter [44813]: INFO [ssh] Found 53.45.114.103 2016-01-07 13:34:38,545 fail2ban.filter [44813]: INFO [ssh] Found 53.45.114.103 2016-01-07 13:34:38,546 fail2ban.filter [44813]: INFO [ssh] Found 53.45.114.103 2016-01-07 13:34:38,547 fail2ban.filter [44813]: INFO [ssh] Found 53.45.114.103 2016-01-07 13:34:38,563 fail2ban.filter [44813]: INFO [ssh] Found 53.45.114.103 2016-01-07 13:34:41,026 fail2ban.actions [44813]: NOTICE [ssh] 53.45.114.103 already banned
您需要编辑jail.local文件并在[DEFAULT]块下添加适当的条目,它应该可以工作。