Advertisement
aka144

extra filters

Apr 12th, 2015
256
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.63 KB | None | 0 0
  1. [nginx-auth]
  2. enabled = true
  3. filter = nginx-auth
  4. action = iptables[name=NoAuthFailures, port=80, protocol=tcp]
  5. logpath = /var/log/nginx/error.log
  6. bantime = 3600
  7. maxretry = 6
  8.  
  9. [nginx-login]
  10. enabled = true
  11. filter = nginx-login
  12. action = iptables-multiport[name=NoLoginFailures, port="http,https"]
  13. logpath = /var/log/nginx/access.log
  14. bantime = 3600
  15. maxretry = 6
  16.  
  17. [nginx-badbots]
  18. enabled = true
  19. filter = apache-badbots
  20. action = iptables-multiport[name=BadBots, port="http,https"]
  21. logpath = /var/log/nginx/access.log
  22. bantime = 86400
  23. maxretry = 1
  24.  
  25. [nginx-noscript]
  26. enabled = true
  27. action = iptables-multiport[name=NoScript, port="http,https"]
  28. filter = nginx-noscript
  29. logpath = /var/log/nginx/access.log
  30. maxretry = 6
  31. bantime = 86400
  32.  
  33. [nginx-proxy]
  34. enabled = true
  35. action = iptables-multiport[name=NoProxy, port="http,https"]
  36. filter = nginx-proxy
  37. logpath = /var/log/nginx/access.log
  38. maxretry = 0
  39. bantime = 86400
  40.  
  41. [wordpress]
  42. enabled = true
  43. filter = wordpress
  44. logpath = /var/log/auth.log
  45. port = http,https
  46. maxretry = 5
  47. findtime = 10800
  48. bantime = 86400
  49.  
  50. [nginx-req-limit]
  51.  
  52. enabled = true
  53. filter = nginx-req-limit
  54. action = iptables-multiport[name=ReqLimit, port="http,https", protocol=tcp]
  55. logpath = /var/log/nginx/error.log
  56. findtime = 600
  57. bantime = 7200
  58. maxretry = 10
  59.  
  60. [nginx-dos]
  61. # Based on apache-badbots but a simple IP check (any IP requesting more than
  62. # 240 pages in 60 seconds, or 4p/s average, is suspicious)
  63. # Block for two full days.
  64. # @author Yannick Warnier
  65. enabled = true
  66. port = http,8090
  67. filter = nginx-dos
  68. logpath = /var/log/nginx/access.log
  69. findtime = 60
  70. bantime = 172800
  71. maxretry = 240
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement