fail2ban isn’t a WAF?
Comment on Low resource, Performant WAF
Xanza@lemm.ee 10 months ago
You can set dbpurgeage to 30d and pretty much just run it. It’s appeal is that you basically can download it, enable it, and it just works for you. It depends on your environment, though. If you have incoming authorized requests from other services it might be a pain to configure, but I’ve never used anything easier to protect you from bad actors.
computergeek125@lemmy.world 10 months ago
AustralianSimon@lemmy.world 10 months ago
I’ve used it on a machine before but given I am using a cloudflared container for ingress, can I route my traffic through a f2b container to the app? This might be ideal from a co fig perspective.
Xanza@lemm.ee 10 months ago
Yes, you just have to enable the built-in plugin for cloudflared: github.com/fail2ban/fail2ban/…/cloudflare.conf
AustralianSimon@lemmy.world 10 months ago
Ahhhmazing, I’ll set this up tonight. Really appreciate the help.