Comments (6)
Hello, we are some people how had this issue, on bug.debian bug #860387
, they suggest :
Commenting out "port = anyport" lets fail2ban cleanly restart again.
from puppet-fail2ban.
I am not able to reproduce this issue.
vagrant@debian-8:/etc/fail2ban$ sudo /etc/init.d/fail2ban status
● fail2ban.service - LSB: Start/stop fail2ban
Loaded: loaded (/etc/init.d/fail2ban)
Active: active (running) since Mon 2016-11-07 16:11:08 CET; 1min 44s ago
Process: 2571 ExecStop=/etc/init.d/fail2ban stop (code=exited, status=0/SUCCESS)
Process: 2585 ExecStart=/etc/init.d/fail2ban start (code=exited, status=0/SUCCESS)
CGroup: /system.slice/fail2ban.service
└─2595 /usr/bin/python /usr/bin/fail2ban-server -b -s /var/run/fail2ban/fail2ban.sock -p /var/run/fail2ban/fail2ban.pid
Nov 07 16:11:08 debian-8 systemd[1]: Starting LSB: Start/stop fail2ban...
Nov 07 16:11:08 debian-8 fail2ban[2585]: Starting authentication failure monitor: fail2ban.
Nov 07 16:11:08 debian-8 systemd[1]: Started LSB: Start/stop fail2ban.
Are you sure that you did not place any files under /etc/fail2ban/jail.d/
?
from puppet-fail2ban.
We have also just started seeing this issue - but not on all hosts that we are responsible for - difference is that on servers with no issue fail2ban is v0.8.11 and on affected servers its v0.9.3
Exactly the same error as above
from puppet-fail2ban.
Use the correct desired configuration template, should fix this issue.
fail2ban::config_file_template: "fail2ban/%{::lsbdistcodename}/etc/fail2ban/jail.conf.erb"
from puppet-fail2ban.
I too can confirm the duplicate port error on pam-generic. Fail2Ban is managed by puppet, who was reporting the error. In Jail.local, under pam-generic port is actually in there twice. Once as "all", and once as "anyport". I commented out anyport, and the system came back fine.
from puppet-fail2ban.
I know that the port has been defined twice, but I still can not reproduce this issue. Debian 8 (Jessie) provides Fail2ban 0.8.13-1 and I used the default config to create the template.
This configuration is generated by the following Puppet / Hiera code and the Fail2ban service starts without any error message.
...
[pam-generic]
enabled = true
# pam-generic filter can be customized to monitor specific subset of 'tty's
filter = pam-generic
# port actually must be irrelevant but lets leave it all for some possible uses
port = all
banaction = iptables-allports
port = anyport
logpath = /var/log/auth.log
maxretry = 6
...
class { 'fail2ban':
config_file_template => "fail2ban/${::lsbdistcodename}/etc/fail2ban/jail.conf.erb"
}
---
fail2ban::jails:
'pam-generic':
Fail2ban 0.9.6-1 is provided by Debian Testing (Stretch), which is not supported by this module.
from puppet-fail2ban.
Related Issues (20)
- Use of U+2013 (EN DASH) in trusty template causes puppetdb errors HOT 6
- custom_jails are not populating the 'ignoreip" values in the custom_jail.conf.epp template HOT 1
- Update puppet forge HOT 3
- Missing directories when using custom jails HOT 4
- ignoreip in custom jails not populating HOT 3
- Support for RHEL/CentOS 8 HOT 1
- Move templates HOT 8
- Allow multiple data types
- Option to disable service start/stop notifications HOT 1
- Why is firewalld being "deactivated" HOT 2
- Fail2ban does not work on Centos 7
- You cannot specify more than one of content, source, target HOT 3
- custom_jail overrides default filters or correct way to change just logpath in default jail HOT 2
- hiera jails are not picked up
- Add Ubuntu 22.04 Template HOT 4
- Template for Rocky Linux 8 HOT 2
- Change in case for operatingsystem fact on opensuse
- Please add Debian 12 template HOT 3
- puppet-extlib version HOT 1
- Request for release HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from puppet-fail2ban.