• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Question [Fail2Ban] How redirect banned traffic to a static page?

T

Tomek

Regular Pleskian
Right now when Fail2Ban ban the website owner IP, the user does not know what is happening. He thinks that his website is down.

I would like to let the user know that his IP has been banned and provide contact information.

I am thinking of redirecting traffic to a static page with this information.

But how to make it? How redirect banned traffic to a static page?

Or maybe there is a better solution to this problem?
 
Last edited:
Fail2Ban places a rule in iptables by which the traffic (the actual data packets) are blocked. It is not possible to redirect such packets to a specific website, as they are blocked on a low level that does not know anything about the existance of websites.
 
Thank you very much Peter for your response and explanation.

In other words, there is no way to tell the user that he has been banned?


I especially think about plesk-wordpress and plesk-modsecurity jail.

With enabled plesk-modsecurity jail, it is practically impossible to use Wordpress plugins and not be banned.

Does ModSecurity need enabled plesk-modsecurity jail in Fail2Ban to work properly?
 
ModSecurity is independent of Fail2Ban. These two are different things. ModSecurity blocks single URL requests that match a certain URL pattern. It does not block IP addresses.

The ModSecurity jail is a Fail2Ban jail that reads ModSecurity data and blocks IP addresses that have before been blocked in the ModSecurity context. The "modsecurity" fail2ban jail is not required for ModSecurity to operate correctly.
 
This is good news :)

I will turn off the plesk-modsecurity jail and I will check how everything works.

Again, thank you very much Peter :)


I ask to be sure. There is no way to tell "plesk-wordpress jail" banned users, that they have been banned?
 
Last edited:
You must log in or register to reply here.

Similar threads

A
Question Plesk Admin - Bad Bot protection
Replies
4
Views
430
Alban Staehli
A
J
fail2ban: plesk-wordpress jail is to restrictive
Replies
1
Views
6K
Kaspar@Plesk
Kaspar@Plesk
W
Question How to Prevent High Connection Counts Causing High Memory Usage (Possible DDoS?)
Replies
7
Views
2K
Bitpalast
Bitpalast
T
Issue Unbanning some IP addresses causes the server to be unresponsive
Replies
4
Views
958
TurabG
T
Merlin1220
Resolved non-existent subdomain is redirected to the default page
Replies
4
Views
2K
Merlin1220
Merlin1220
Back
Top