mirror of
https://github.com/linuxserver/fail2ban-confs.git
synced 2026-02-20 05:02:42 +08:00
11 lines
473 B
Plaintext
11 lines
473 B
Plaintext
## Version 2022/08/06
|
|
# Fail2Ban filter for SoftEtherVPN
|
|
# Detecting unauthorized access to SoftEtherVPN
|
|
# typically logged in /usr/local/vpnserver/security_log/*/sec.log, or in syslog, depending on configuration
|
|
|
|
[INCLUDES]
|
|
before = common.conf
|
|
|
|
[Definition]
|
|
failregex = ^%(__prefix_line)s(?:(?:\([\d\-]+ [\d:.]+\) )?<SECURITY_LOG>: )?Connection "[^"]+": User authentication failed. The user name that has been provided was "<F-USER>(?:[^"]+|.+)</F-USER>", from <ADDR>\.$
|