• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:

    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Question [Fail2Ban] How redirect banned traffic to a static page?

Tomek

Regular Pleskian
Right now when Fail2Ban ban the website owner IP, the user does not know what is happening. He thinks that his website is down.

I would like to let the user know that his IP has been banned and provide contact information.

I am thinking of redirecting traffic to a static page with this information.

But how to make it? How redirect banned traffic to a static page?

Or maybe there is a better solution to this problem?
 
Last edited:
Fail2Ban places a rule in iptables by which the traffic (the actual data packets) are blocked. It is not possible to redirect such packets to a specific website, as they are blocked on a low level that does not know anything about the existance of websites.
 
Thank you very much Peter for your response and explanation.

In other words, there is no way to tell the user that he has been banned?


I especially think about plesk-wordpress and plesk-modsecurity jail.

With enabled plesk-modsecurity jail, it is practically impossible to use Wordpress plugins and not be banned.

Does ModSecurity need enabled plesk-modsecurity jail in Fail2Ban to work properly?
 
ModSecurity is independent of Fail2Ban. These two are different things. ModSecurity blocks single URL requests that match a certain URL pattern. It does not block IP addresses.

The ModSecurity jail is a Fail2Ban jail that reads ModSecurity data and blocks IP addresses that have before been blocked in the ModSecurity context. The "modsecurity" fail2ban jail is not required for ModSecurity to operate correctly.
 
This is good news :)

I will turn off the plesk-modsecurity jail and I will check how everything works.

Again, thank you very much Peter :)


I ask to be sure. There is no way to tell "plesk-wordpress jail" banned users, that they have been banned?
 
Last edited:
Back
Top