fail2ban

[Feefty]

should i use fail2ban? http://www.fail2ban.org/

because last time i used it, some of my players can't login.

[Winz]

well, it's just up to you. just tell you 1 thing.

A, B, C, D, E, F, G are your players. All of them are using the same internet provider: X, which gives dynamic IP.

C got IP no. 1 and had a bad idea that he attacked your server. fail2ban recognized it and ban the IP.

The next day, other's IP restarted. C got IP 2 and do it again to your server and got banned again.

The next day, D got IP 1, and F got IP 2. both of those IP are banned. then, your players would think _______________ <fill in the blank by yourself~>

[Mitsu]

Just think of why you need fail2ban, what for ?

Then edit your fail2ban config file to fit it to your server and your needs

fail2ban purpose is generally to limit bruteforce attacks on ssh

if some of your users are still being banned by f2b, then search for why they want to initiate a ssh connection

[Asura]

Hi Feefty,

Mitsu's explanation is correct. 'fail2ban' is for banning bruteforce/more-than-usual attempts to your SSH/SFTP or any other port/service you may configured it for.; so it doesn't actually do anything for network attacks (DDOS). If you are looking to beef up security for your server, I recommend CSF/LFD; http://configserver.com/cp/csf.html