Fail2ban normalizes Fail2ban events and enables you to analyze Fail2ban data using pre-set dashboard views. You can further customize the dashboard and searches to perform in-depth analysis.
Released Version: 5.0.0
Release Date: May 14, 2020
Supported On: Logpoint v6.0.0 and later
Download: Fail2ban_5.0.0.pak
SHA256: 2e9a4d47cddf10340315e181f17ad5852e32cc8f568366ddea1799050d12d684
Package Details
It consists of the following components:
-
Dashboard Package
- LP_Fail2ban
-
Alert Package
- LP_Fail2ban IP Banned
-
Normalization Package
- LP_Fail2ban
Enhancement
A minor update has been done in the application’s normalizer for better signature handling.
Installation
To install the Fail2ban:
- Download the .pak file from the Download link above.
- Go to Settings >> System Settings from the navigation bar and click Applications.
- Click Import.
- Browse to the downloaded .pak file.
- Click Upload.
Supported Version
Fail2ban v0.8
Log Format
Expected Log Format
- Fail2ban Format
Log Sample
2017-01-11 06:56:00,694 fail2ban.actions [32272]: NOTICE [sshd] Ban 1.1.1.1
To export data to LogPoint use the Syslog collector on port 514 on the Logpoint server.
Support
If you have any queries or require assistance, create a support ticket.
Best regards,
Comments
Article is closed for comments.