ansible-fail2ban¶
A role to install and configure fail2ban on a target host.
Role Variables¶
Variables conditionally loaded¶
None.
Default vars¶
Defaults from defaults/main.yml.
# defaults file for fail2ban
# service
fail2ban_svc_state: started
fail2ban_svc_enabled: yes
fail2ban_pkg_state: latest
# defaults
fail2ban_jail_default:
bantime: 600
maxretry: 3
# fail2ban_sshd
fail2ban_jails:
- name: sshd
enabled: 'true'
maxretry: '5'
Installation¶
Install with Ansible Galaxy¶
ansible-galaxy install archf.fail2ban
Basic usage is:
- hosts: all
roles:
- role: archf.fail2ban
Install with git¶
If you do not want a global installation, clone it into your roles_path.
git clone git@github.com:archf/ansible-fail2ban.git /path/to/roles_path
But I often add it as a submdule in a given playbook_dir repository.
git submodule add git@github.com:archf/ansible-fail2ban.git <playbook_dir>/roles/fail2ban
As the role is not managed by Ansible Galaxy, you do not have to specify the github user account.
Basic usage is:
- hosts: all
roles:
- role: fail2ban
Ansible role dependencies¶
None.
License¶
MIT.
Author Information¶
Felix Archambault.
Role stack¶
This role was carefully selected to be part an ultimate deck of roles to manage your infrastructure.
All roles’ documentation is wrapped in this convenient guide.
This README was generated using ansidoc. This tool is available on pypi!
pip3 install ansidoc
# validate by running a dry-run (will output result to stdout)
ansidoc --dry-run <rolepath>
# generate you role readme file
ansidoc <rolepath>
You can even use it programatically from sphinx. Check it out.