add fail2ban vhost jail

2026-04-05 04:08:19 +00:00 · 2020-05-04 23:47:37 +07:00
parent 7d470b0dbb
commit c65828c346
1 changed files with 4 additions and 4 deletions
--- a/lib/lemper-create.sh
+++ b/lib/lemper-create.sh
@@ -882,9 +882,9 @@ function validate_ipv6() {
 # Main App
 #
 function init_app() {
-    OPTS=$(getopt -o u:d:f:4:6:w:p:scPSWDhv \
+    OPTS=$(getopt -o u:d:f:4:6:w:p:scPSFWDhv \
      -l username:,domain-name:,framework:,ipv4:,ipv6:,webroot:,php-version:,clone-skeleton \
-      -l enable-fastcgi-cache,enable-pagespeed,enable-https,wildcard-domain,dryrun,help,version \
+      -l enable-fastcgi-cache,enable-pagespeed,enable-https,enable-fail2ban,wildcard-domain,dryrun,help,version \
      -n "${APP_NAME}" -- "$@")

    eval set -- "${OPTS}"
@@ -954,7 +954,7 @@ function init_app() {
                DRYRUN=true
            ;;
            -F | --enable-fail2ban) shift
-                DRYRUN=true
+                ENABLE_FAIL2BAN=true
            ;;
            -h | --help) shift
                show_usage
@@ -1490,7 +1490,7 @@ function init_app() {
                if [[ ${ENABLE_FAIL2BAN} == true ]]; then
                    echo "Enable fail2ban's ${FRAMEWORK} filter for ${SERVERNAME}..."

-                    if [[ -n $(command -v fail2ban-client) && -f "/etc/fail2ban/filter.d/${FRAMEWORK}" ]]; then
+                    if [[ $(command -v fail2ban-client) && -f "/etc/fail2ban/filter.d/${FRAMEWORK}.conf" ]]; then
                        cat > "/etc/fail2ban/jail.d/${SERVERNAME}.conf" <<_EOL_
 [${FRAMEWORK}]
 enabled = true