fail2ban isn’t a WAF?
Comment on Low resource, Performant WAF
Xanza@lemm.ee 2 months ago
You can set dbpurgeage to 30d and pretty much just run it. It’s appeal is that you basically can download it, enable it, and it just works for you. It depends on your environment, though. If you have incoming authorized requests from other services it might be a pain to configure, but I’ve never used anything easier to protect you from bad actors.
computergeek125@lemmy.world 2 months ago
AustralianSimon@lemmy.world 2 months ago
I’ve used it on a machine before but given I am using a cloudflared container for ingress, can I route my traffic through a f2b container to the app? This might be ideal from a co fig perspective.
Xanza@lemm.ee 2 months ago
Yes, you just have to enable the built-in plugin for cloudflared: github.com/fail2ban/fail2ban/…/cloudflare.conf
AustralianSimon@lemmy.world 2 months ago
Ahhhmazing, I’ll set this up tonight. Really appreciate the help.