These forums are locked and archived, but all topics have been migrated to the new forum. You can search for this topic on the new forum: Search for I am running FirewallD. Fail2ban has block a test ip address...I cannot find where to unblock it /var/lib/iptables doesnt exist! on the new forum.
FirewallD and IPtables are two unrelated firewalls. Fail2ban is using firewallD. That part of the instructions was from when webmin defaulted to Iptables firewall and then fail2ban was added. Later on, they switched to FirewallD as the default firewall. I dont use firewalld but in webmin > networking > firewallD it should show all the blocks/allow lines.
yes, but it does not...that is empty.
What i am now thinking is that fail2ban is not actually using any other source for storing the blocked ip addresses...i think it is adding the block ip address within a log file in fail2ban itself.
The problem is that the Webmin website tutorial is outdated and has not been rewritten to suit current defaults within webmin/virtualmin...hence my confusion.
https://ajecreative.com.au
sudo zgrep 'Ban:' /var/log/fail2ban.log*
or a prettier view ( only for iptables ) :
sudo iptables -L INPUT -v -n | less
general log :
fail2ban-client status sshd
Make sure also that it is really banned ( see if you can login after 10 min ) becasue fail2ban is temporary block in nature.
If you can not login after long time that it is not that problem.. take a look also at the virtual memory - I had ( and still have ) this problem with virtualmin..
The log itself will probably be too long , so you can add
| wc -l
pipesudo zgrep 'Ban' /var/log/fail2ban.log* | wc -l
or just output all to another text / log with
> filename.ext
to unban (ssh as exaample) :
fail2ban-client set ssh-iptables unbanip YOURWANTEDIPADDRESS
or generic form for every wanted jail :
fail2ban-client set THEWANTEDJAILNAME unbanip YOURWANTEDIPADDRESS