Recently in an Ubuntu 20.04 box from
fail2ban I got the following error:
2023-07-13 06:57:05,129 fail2ban.actions : NOTICE [nginx-http-auth] Ban 2600:1005:b02d:3b6a:c1e:4a7e:6a9f:ccc4
2023-07-13 06:57:05,151 fail2ban.utils : ERROR 7f106882c6c0 -- exec: ipset create f2b-nginx-http-auth-v6 hash:ip timeout 600 family inet6
ip6tables -w -I ban -m set --match-set f2b-nginx-http-auth-v6 src -j REJECT --reject-with icmp6-port-unreachable
2023-07-13 06:57:05,152 fail2ban.utils : ERROR 7f106882c6c0 -- timed out after 0 seconds.
2023-07-13 06:57:05,353 fail2ban.utils : ERROR ipset create f2b-nginx-http-auth-v6 hash:ip timeout 600 family inet6
ip6tables -w -I ban -m set --match-set f2b-nginx-http-auth-v6 src -j REJECT --reject-with icmp6-port-unreachable -- failed with [Errno 3] No such process
2023-07-13 06:57:05,353 fail2ban.utils : ERROR 7f106882c6c0 -- killed with SIGTERM (return code: -15)
2023-07-13 06:57:05,354 fail2ban.actions : ERROR Failed to execute ban jail 'nginx-http-auth' action 'iptables-ipset-proto6-allports' info 'ActionInfo({'ip': '2600:1005:b02d:3b6a:c1e:4a7e:6a9f:ccc4', 'family': 'inet6', 'fid': at 0x7f1068839750>, 'raw-ticket': at 0x7f1068839e10>})': Error starting action Jail('nginx-http-auth')/iptables-ipset-proto6-allports: 'Script error'
actionstart from **/etc/fail2ban/action.d/iptables-ipset-proto6-allports.local**
actionstart = ipset create hash:ip timeout
-I -m set --match-set src -j
My understanding about the issue is that fail2ban is failing to execute ipset / ip6tables (deadlock?)
Is there is a way to relax fail2ban settings so it retries multiple times or allows a longer timeout before exiting.
Asked by Javier López
(171 rep)
Jul 13, 2023, 09:07 PM
Last activity: Jul 17, 2023, 10:27 AM
Last activity: Jul 17, 2023, 10:27 AM