diff --git a/root/etc/e-smith/templates/etc/rc.d/init.d/masq/40Fail2Ban b/root/etc/e-smith/templates/etc/rc.d/init.d/masq/40Fail2Ban index 934ffbd..b9ec967 100644 --- a/root/etc/e-smith/templates/etc/rc.d/init.d/masq/40Fail2Ban +++ b/root/etc/e-smith/templates/etc/rc.d/init.d/masq/40Fail2Ban @@ -2,9 +2,5 @@ /sbin/iptables --new-chain Fail2Ban /sbin/iptables --new-chain Fail2Ban_1 /sbin/iptables --append Fail2Ban -j Fail2Ban_1 - # TODO: add a prop to filter only external or internal and external interfaces - # Check for banned hosts after local_chk and state_chk - # TODO: add a prop to block established connections for banned host - # which means insert into position 1 instead of 3 - /sbin/iptables --insert INPUT 3 \ + /sbin/iptables --insert INPUT 1 \ -j Fail2Ban