Skip to content

System hardening

Fail2Ban simple config for SSH

Introduction

Fail2Ban is a software that scans logs files and can ban IP addresses, for example with too many failed login attempts. Ban is done by updating system firewall rules to reject connections from those IP addresses for a configurable amount of time. This functionality is really useful to protect your server from brute force attacks. In this article we will look at how to protect one of the most important service which is SSH using Fail2Ban.

OS used: Debian 12
Software used: fail2ban 1.0.2

Securing server and management computer

Introduction

In this article I will focus on things that should be done to secure homelab servers and management computer used for connecting to these servers. Compromise of one or another can have very negative consequences for home infrastructure. I even think that management computer is more important because it is an access point to all of servers. I will try to cover some of topics mentioned here in future posts.