fail2ban

  • Category: 電腦相關
  • Last Updated: Wednesday, 24 December 2014 10:53
  • Published: Tuesday, 16 December 2014 11:53
  • Written by sam

fail2ban用了許久

但只用到擋ssh的功能

早上一來發現postfix的訊息一直閃

Dec 16 09:10:31 cacti postfix/smtpd[3973]: lost connection after AUTH from 79.108.193.88.dyn.user.ono.com[79.108.193.88]
Dec 16 09:10:31 cacti postfix/smtpd[3973]: disconnect from 79.108.193.88.dyn.user.ono.com[79.108.193.88]
Dec 16 09:10:31 cacti postfix/smtpd[3973]: connect from 79.108.193.88.dyn.user.ono.com[79.108.193.88]
Dec 16 09:10:32 cacti postfix/smtpd[3973]: warning: 79.108.193.88.dyn.user.ono.com[79.108.193.88]: SASL LOGIN authentication failed: authentication failure

這次來設定一下加上「postfix」過濾的功能

Read more: fail2ban

FORTINET 200D DNS

  • Category: 電腦相關
  • Last Updated: Tuesday, 02 December 2014 11:52
  • Published: Tuesday, 02 December 2014 10:23
  • Written by sam

公司用的DNS建立在FORTINET上面

要配合環境測試

所以要建立一下假的DNS方便將client指到自己的svr

第一次建立失敗

手動的DNS沒RECORD的話…就不會動了

所以會導致內、外部一起掛點

設定的部份如下

原先的設定(誤)

 photo 2014-12-02_095912_zps604f9481.png

Read more: FORTINET 200D DNS