vn-ansible/linux/base-config-debian/config-fail2ban.yaml

---

- hosts: "{{ ip_addr }}"
  become: yes
  become_method: sudo
  gather_facts: yes

  tasks:

    - name: set variables
      set_fact:
        bantime: "10m"
        maxretry: "10"
        findtime: "10m"
        jails:
          - name: sshd
            enabled: true
            filter: sshd
            logpath: /var/log/lastlog
            port: ['ssh', '22']
            maxretry: 10
            bantime: 10m
            findtime: 10m
          - name: asterisk
            enabled: true
            filter: asterisk
            logpath: /var/log/asterisk/messages
            port: ['asterisk', '5060']
            maxretry: 10
            bantime: 10m
            findtime: 10m

    - name: "[CONFIG FAIL2BAN] Install and configure fail2ban service"
      import_role:
        name: config-fail2ban
create role fail2ban 2023-10-17 13:10:41 +00:00			`---`

			`- hosts: "{{ ip_addr }}"`
			`become: yes`
			`become_method: sudo`
update task on main playbook 2023-10-18 12:24:17 +00:00			`gather_facts: yes`
create role fail2ban 2023-10-17 13:10:41 +00:00
			`tasks:`
add vars 2023-10-19 10:14:13 +00:00
test 2023-10-19 09:59:11 +00:00			`- name: set variables`
			`set_fact:`
			`bantime: "10m"`
			`maxretry: "10"`
			`findtime: "10m"`
			`jails:`
			`- name: sshd`
			`enabled: true`
			`filter: sshd`
			`logpath: /var/log/lastlog`
			`port: ['ssh', '22']`
			`maxretry: 10`
			`bantime: 10m`
			`findtime: 10m`
			`- name: asterisk`
			`enabled: true`
			`filter: asterisk`
			`logpath: /var/log/asterisk/messages`
			`port: ['asterisk', '5060']`
			`maxretry: 10`
			`bantime: 10m`
			`findtime: 10m`
create role fail2ban 2023-10-17 13:10:41 +00:00
changes and order playbooks 2023-10-18 10:26:07 +00:00			`- name: "[CONFIG FAIL2BAN] Install and configure fail2ban service"`
create role fail2ban 2023-10-17 13:10:41 +00:00			`import_role:`
test 2023-10-19 09:21:54 +00:00			`name: config-fail2ban`