Show Posts
1
General Discussion / Ban failed login attempt like fail2ban
« on: May 19, 2021, 01:03:55 pm »
Hi,
I have a problem banning failed login attempts in Web-GUI just like fail2ban.
I notice there are sshlockout features, but it will activate in 5 minutes intervals via Cron scheduler (correct me if I'm wrong).
If someone does the brute-force attack, it will not ban/block the host even after 100 attempts.
There is some discussion related to this issue, https://forum.opnsense.org/index.php?topic=12810.0
But I'm not familiar with using Wazuh and FreeBSD.
BTW, I'm a newbie and need some advice from an expert here.
Thank you.
I have a problem banning failed login attempts in Web-GUI just like fail2ban.
I notice there are sshlockout features, but it will activate in 5 minutes intervals via Cron scheduler (correct me if I'm wrong).
If someone does the brute-force attack, it will not ban/block the host even after 100 attempts.
There is some discussion related to this issue, https://forum.opnsense.org/index.php?topic=12810.0
But I'm not familiar with using Wazuh and FreeBSD.
BTW, I'm a newbie and need some advice from an expert here.
Thank you.