• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Plesk12 + Centos 7 + fail2ban 0.9-9.el7 = error

R

RedEnzian

New Pleskian
Hello,

we are currently setting up our new dedicated server. As stated in the title we use Plesk12, Centos 7 and fail2ban 0.9-9.el7.

we can switch on every single jail, but when we add one more or trying to enable 2 or more at the same time we get an error like this in plesk:

Code: 
Unable to switch on the selected jails: f2bmng failed: WARNING 'actioncheck' not defined in 'Definition'. Using default one: ''
ERROR NOK: ('proftpd',)
ERROR NOK: ('sshd',)
ERROR NOK: ('Cannot change database when there are jails present',)
ERROR:f2bmng:Command '['/usr/bin/fail2ban-client', 'reload', 'sshd']' returned non-zero exit status 255
ERROR:f2bmng:Failed to reload following jails due to errors in configuration: sshd

[[errorJailNotDisabled]]

and this in the logfile:

Code: 
2014-08-22 10:21:12,246 fail2ban.server.server[15904]: INFO    Changed logging target to /var/log/fail2ban.log for Fail2ban v0.9.0
2014-08-22 10:21:12,247 fail2ban.server.database[15904]: INFO    Connected to fail2ban persistent database '/var/lib/fail2ban/fail2ban.sqlite3'
2014-08-22 10:21:32,789 fail2ban.server.transmitter[15904]: WARNING Command ['stop', 'proftpd'] has failed. Received UnknownJailException('proftpd',)
2014-08-22 10:21:32,790 fail2ban.server.server[15904]: INFO    Changed logging target to /var/log/fail2ban.log for Fail2ban v0.9.0
2014-08-22 10:21:32,790 fail2ban.server.database[15904]: INFO    Connected to fail2ban persistent database '/var/lib/fail2ban/fail2ban.sqlite3'
2014-08-22 10:21:33,014 fail2ban.server.jail[15904]: INFO    Creating new jail 'proftpd'
2014-08-22 10:21:33,014 fail2ban.server.jail[15904]: INFO    Jail 'proftpd' uses systemd
2014-08-22 10:21:33,033 fail2ban.server.jail[15904]: INFO    Initiated 'systemd' backend
2014-08-22 10:21:33,163 fail2ban.server.filter[15904]: INFO    Set maxRetry = 3
2014-08-22 10:21:33,164 fail2ban.server.actions[15904]: INFO    Set banTime = 600
2014-08-22 10:21:33,164 fail2ban.server.filter[15904]: INFO    Set findtime = 600
2014-08-22 10:21:33,176 fail2ban.server.jail[15904]: INFO    Jail 'proftpd' started
2014-08-22 10:21:33,279 fail2ban.server.action[15904]: ERROR   ipset create fail2ban-proftpd hash:ip timeout 600
firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -p tcp -m multiport --dports ftp,ftp-data,ftps,ftps-data -m set --match-set fail2ban-proftpd src -j REJECT --reject-with icmp-port-unreachable -- stdout: '\x1b[91mFirewallD is not running\x1b[00m\n'
2014-08-22 10:21:33,279 fail2ban.server.action[15904]: ERROR   ipset create fail2ban-proftpd hash:ip timeout 600
firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -p tcp -m multiport --dports ftp,ftp-data,ftps,ftps-data -m set --match-set fail2ban-proftpd src -j REJECT --reject-with icmp-port-unreachable -- stderr: ''
2014-08-22 10:21:33,279 fail2ban.server.action[15904]: ERROR   ipset create fail2ban-proftpd hash:ip timeout 600
firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -p tcp -m multiport --dports ftp,ftp-data,ftps,ftps-data -m set --match-set fail2ban-proftpd src -j REJECT --reject-with icmp-port-unreachable -- returned 252
2014-08-22 10:21:33,279 fail2ban.server.actions[15904]: ERROR   Failed to start jail 'proftpd' action 'firewallcmd-ipset': Error starting action
2014-08-22 10:22:31,517 fail2ban.server.transmitter[15904]: WARNING Command ['stop', 'sshd'] has failed. Received UnknownJailException('sshd',)
2014-08-22 10:22:31,518 fail2ban.server.server[15904]: INFO    Changed logging target to /var/log/fail2ban.log for Fail2ban v0.9.0
2014-08-22 10:22:31,518 fail2ban.server.transmitter[15904]: WARNING Command ['set', 'dbfile', '/var/lib/fail2ban/fail2ban.sqlite3'] has failed. Received RuntimeError('Cannot change database when there are jails present',)
2014-08-22 10:22:31,519 fail2ban.server.jail[15904]: INFO    Creating new jail 'sshd'
2014-08-22 10:22:31,519 fail2ban.server.jail[15904]: INFO    Jail 'sshd' uses systemd
2014-08-22 10:22:31,519 fail2ban.server.jail[15904]: INFO    Initiated 'systemd' backend
2014-08-22 10:22:31,661 fail2ban.server.filter[15904]: INFO    Set maxRetry = 3
2014-08-22 10:22:31,662 fail2ban.server.actions[15904]: INFO    Set banTime = 600
2014-08-22 10:22:31,662 fail2ban.server.filter[15904]: INFO    Set findtime = 600
2014-08-22 10:22:31,663 fail2ban.server.filter[15904]: INFO    Set maxlines = 10
2014-08-22 10:22:31,688 fail2ban.filter [15904]: INFO    Added journal match for: '_SYSTEMD_UNIT=sshd.service + _COMM=sshd'
2014-08-22 10:22:31,693 fail2ban.server.jail[15904]: INFO    Jail 'sshd' started
2014-08-22 10:22:32,405 fail2ban.server.jail[15904]: INFO    Jail 'sshd' stopped
2014-08-22 10:22:32,652 fail2ban.server.server[15904]: INFO    Changed logging target to /var/log/fail2ban.log for Fail2ban v0.9.0
2014-08-22 10:22:32,653 fail2ban.server.transmitter[15904]: WARNING Command ['set', 'dbfile', '/var/lib/fail2ban/fail2ban.sqlite3'] has failed. Received RuntimeError('Cannot change database when there are jails present',)

already used bootstrap repair, reinstalled fail2ban and fail2ban configurator

can somebody help?

with best regards
Bernhard

€dit:

one last thing which bothered me ... i have seen tutorials where they activate jails before enabling intrusion detection ... i didn´t have the "switch on" button in the interface as long as fail2ban is not active.
 
Last edited:
Plesk 12.0 ships with own fail2ban component. Fail2ban 0.9 is not supported due its beta status.
 
You must log in or register to reply here.

Similar threads

S
Issue SMTP/Qmail stop working suddenly without any cause
Replies
3
Views
2K
Stephen_Stephen
S
R
Issue Unable To turn on Fail2Ban , Nothing In Logs
Replies
0
Views
995
rushaboswal
R
claxman
Issue Anacron job 'cron.daily' on server.domain (Fail2Ban Automatic Closing Problem)
Replies
17
Views
3K
Hiljo_Lodewijk
H
L
Issue Server backup fails after moving domain to subscription
Replies
6
Views
1K
Kaspar@Plesk
Kaspar@Plesk
T
Issue Explicit FTP over TLS: Initializing TLS... TLS/TLS-C negotiation failed on control channel
Replies
3
Views
4K
mow
M
Back
Top