diff options
Diffstat (limited to 'config/action.d/iptables-ipset-proto6-allports.conf')
| -rw-r--r-- | config/action.d/iptables-ipset-proto6-allports.conf | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/config/action.d/iptables-ipset-proto6-allports.conf b/config/action.d/iptables-ipset-proto6-allports.conf index 113f599e..b761ad8c 100644 --- a/config/action.d/iptables-ipset-proto6-allports.conf +++ b/config/action.d/iptables-ipset-proto6-allports.conf @@ -29,12 +29,18 @@ before = iptables-common.conf actionstart = ipset create <ipmset> hash:ip timeout <bantime><familyopt> <iptables> -I <chain> -m set --match-set <ipmset> src -j <blocktype> +# Option: actionflush +# Notes.: command executed once to flush IPS, by shutdown (resp. by stop of the jail or this action) +# Values: CMD +# +actionflush = ipset flush <ipmset> + # Option: actionstop # Notes.: command executed once at the end of Fail2Ban # Values: CMD # actionstop = <iptables> -D <chain> -m set --match-set <ipmset> src -j <blocktype> - ipset flush <ipmset> + <actionflush> ipset destroy <ipmset> # Option: actionban |