fail2ban conf and knockd

assets/fail2ban.jail.conf

@@ -132,7 +132,7 @@ maxretry  = 2
 
 [ssh-ddos]
 
-enabled  = false
+enabled  = true
 port     = ssh
 filter   = sshd-ddos
 logpath  = /var/log/auth.log
@@ -144,7 +144,7 @@ maxretry = 6
 
 [apache]
 
-enabled  = false
+enabled  = true
 port     = http,https
 filter   = apache-auth
 logpath  = /var/log/apache*/*error.log
@@ -182,7 +182,7 @@ maxretry = 2
 
 [vsftpd]
 
-enabled  = false
+enabled  = true
 port     = ftp,ftp-data,ftps,ftps-data
 filter   = vsftpd
 logpath  = /var/log/vsftpd.log
@@ -195,7 +195,7 @@ maxretry = 6
 
 [proftpd]
 
-enabled  = false
+enabled  = true
 port     = ftp,ftp-data,ftps,ftps-data
 filter   = proftpd
 logpath  = /var/log/proftpd/proftpd.log
@@ -204,7 +204,7 @@ maxretry = 6
 
 [pure-ftpd]
 
-enabled  = false
+enabled  = true
 port     = ftp,ftp-data,ftps,ftps-data
 filter   = pure-ftpd
 logpath  = /var/log/auth.log

install-debian-server.sh

@@ -89,11 +89,11 @@ echo '
 '
 echo "\033[35;1mInstalling fall2ban \033[0m"
 sleep 3
-
+apt-get install fail2ban
+cat "$_cwd"/assets/fail2ban.jail.conf > /etc/fail2ban/jail.conf
 echo "fail2ban installed and configured"
 echo "033[92;1m* * *033[Om"
 
-
 echo '
     __                    __       __
    / /______  ____  _____/ /______/ /
@@ -104,8 +104,7 @@ echo '
 '
 echo "\033[35;1mInstalling knockd \033[0m"
 sleep 3
-apt-get install fail2ban
-
+apt-get install knockd
 
 echo "knockd installed and configured"
 echo "033[92;1m* * *033[Om"