Difference between revisions of "Features"

From Fail2ban
Jump to navigationJump to search
 
(14 intermediate revisions by 10 users not shown)
Line 1: Line 1:
tarelv
+
== Current features (0.9.x) ==
 +
 
 +
(in addition to 0.8.x features)
 +
* Python based actions
 +
* Database support
 +
* [https://github.com/fail2ban/fail2ban/issues/54 Multi-line parsing in filters]
 +
* Custom date time support for filters
 +
* Timezone awareness by default
 +
* Timeout on ban commands
 +
* Character set awareness in log files
 +
* Python3+ support
 +
 
 
== Current features (0.8.x) ==
 
== Current features (0.8.x) ==
  
 
Here is a list of the main features available in {{Fail2ban}}.
 
Here is a list of the main features available in {{Fail2ban}}.
 
+
* [http://www.fail2ban.org/wiki/index.php/FEATURE_Client_Server Client/Server architecture.]
* Client/Server architecture.
+
* [http://www.fail2ban.org/wiki/index.php/FEATURE_Client_Server Multi-threaded.]
* Multi-threaded.
+
* Highly configurable using [http://www.fail2ban.org/wiki/index.php/FEATURE_Split_config split configuration files]
* Highly configurable.
+
* Gamin/Pyinotify support.
* FAM/Gamin support.
+
* Parses log files and look for given patterns.
* Parses log files and looks for given patterns.
+
* Executes command(s) when a pattern has been detected for the same IP address for more than ''X'' times to ban that address. ''X'' can be changed.
* Executes commands when a pattern has been detected for the same IP address for more than ''X'' times. ''X'' can be changed.
+
* After a given amount of time, execute another command in order to unban the IP address.
* After a given amount of time, executes another command in order to unban the IP address.
+
* Uses Netfilter/Iptables by default but can also use TCP Wrapper (<tt>/etc/hosts.deny</tt>) and many other firewalls/actions.
* Uses Netfilter/Iptables by default but can also use TCP Wrapper (<tt>/etc/hosts.deny</tt>) and many other actions.
 
 
* Handles log files rotation.
 
* Handles log files rotation.
* Can handle more than one service (sshd, apache, vsftpd, etc).
+
* Can handle multiple services at once (sshd, apache, vsftpd, etc).
* Resolves DNS hostname to IP address.
+
* Resolves DNS hostname to IP address (use with caution, disable by usedns = no).
  
 
== Roadmap ==
 
== Roadmap ==
  
Here is the planned roadmap. If you want to contribute or help on one of these features, please contact the [[User:lostcontrol|author]].
+
Here is the planned roadmap. If you want to contribute or help on one of these features, please contact the [https://lists.sourceforge.net/lists/listinfo/fail2ban-users fail2ban-users mailing list] or browse/comment/report on existing [https://github.com/fail2ban/fail2ban/issues/ issues on github]
 +
 
 +
Please browse [https://github.com/fail2ban/fail2ban/issues/milestones  Fail2ban milestones] for an up-to-date list of planned releases/features.  
  
=== 0.9.0 ===
+
* Add more tags (<LINE>, <USER>, <PORT>) [[Image:okay.gif|done]] Partially done -- use <MATCHES>. Also see [https://github.com/fail2ban/fail2ban/issues/10 Issue #10] and [https://github.com/fail2ban/fail2ban/issues/67 Issue #67]
 +
* [https://github.com/fail2ban/fail2ban/issues/55 Auto-enable feature (activate jail if log file is present)]
 +
 
 +
=== Other envisioned changes ===
  
* Dependency back to Python 2.3 [[Image:okay.gif|done]]
 
* Rewrite communication [[Image:okay.gif|done]]
 
* Add more tags (<LINE>, <USER>)
 
* Add support for pyinotify
 
 
* Decrease memory usage
 
* Decrease memory usage
* Multi-lines parsing
+
 
* Manual control of ban list (ban, unban, reset)
 
* Auto-enable feature (activate jail if log file is present)
 
  
 
[[Category:Fail2ban]]
 
[[Category:Fail2ban]]

Latest revision as of 04:12, 10 February 2017

Current features (0.9.x)

(in addition to 0.8.x features)

  • Python based actions
  • Database support
  • Multi-line parsing in filters
  • Custom date time support for filters
  • Timezone awareness by default
  • Timeout on ban commands
  • Character set awareness in log files
  • Python3+ support

Current features (0.8.x)

Here is a list of the main features available in Fail2ban.

  • Client/Server architecture.
  • Multi-threaded.
  • Highly configurable using split configuration files
  • Gamin/Pyinotify support.
  • Parses log files and look for given patterns.
  • Executes command(s) when a pattern has been detected for the same IP address for more than X times to ban that address. X can be changed.
  • After a given amount of time, execute another command in order to unban the IP address.
  • Uses Netfilter/Iptables by default but can also use TCP Wrapper (/etc/hosts.deny) and many other firewalls/actions.
  • Handles log files rotation.
  • Can handle multiple services at once (sshd, apache, vsftpd, etc).
  • Resolves DNS hostname to IP address (use with caution, disable by usedns = no).

Roadmap

Here is the planned roadmap. If you want to contribute or help on one of these features, please contact the fail2ban-users mailing list or browse/comment/report on existing issues on github.

Please browse Fail2ban milestones for an up-to-date list of planned releases/features.

Other envisioned changes

  • Decrease memory usage
Retrieved from "http://wiki.fail2ban.org/wiki/index.php?title=Features&oldid=5004"