fail2ban unban every ip when the server is shutting down, restoring every ban back again when newrly started

user1907501

2/4/23, 9:57 PM

I have multiple jails with several thousands of banned IPs. The server was running for about a week non-stop, then when I was restarting it it took quite a long time ~2 mins to shutting down, and when the server was back on the CPU usage was unusually high.

I looked into journalctl and found out that fail2ban was unbanning all the IPs when shutting down, and restoring all of them again when newly started.

What is going on here and how do I prevent this?

160

0 + 0

fail2ban

Score:0

Server

Mark Wagner

2/5/23, 12:21 AM

Assuming systemd, copy /lib/systemd/system/fail2ban.service to /etc/systemd/system and then edit /etc/systemd/system/fail2ban.service, replacing

ExecStop=/usr/bin/fail2ban-client stop

with

ExecStop=/bin/true

However, in the future, if you want to stop fail2ban you can't use systemctl and will need to run /usr/bin/fail2ban-client stop

0 + 0

user1907501

2/8/23, 11:21 PM

This doesn't seem to work; still unbanning and restoring every ban when fail2ban restarts. I copied `/lib/systemd/system/fail2ban.service` to `/etc/systemd/system` and replaced the `ExecStop` value as you said (I don't know what this does but `/bin/true` doesn't exist) but no change. Then I deleted the original `/lib/systemd/system/fail2ban.service` file but when tried to start the service, I got an error message to do `systemctl daemon-reload`. I did, the service started normally again, but still unbanning and restoring every ban.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: fail2ban unban every ip when the server is shutting down, restoring every ban back again when newrly started

TH: fail2ban เลิกแบนทุก ip เมื่อเซิร์ฟเวอร์ปิดตัวลง กู้คืนทุกการแบนกลับมาอีกครั้งเมื่อเริ่มต้นใหม่

RO: fail2ban unban fiecare ip atunci când serverul se închide, restabilind fiecare ban înapoi când a pornit recent

RU: fail2ban разблокирует каждый ip при выключении сервера, восстанавливая каждый бан снова при новом запуске

VI: fail2ban bỏ cấm mọi ip khi máy chủ ngừng hoạt động, khôi phục lại mọi lệnh cấm khi mới bắt đầu

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.