- initial commit for fail2ban playbook

1 files changed, 49 insertions, 0 deletions

diff --git a/ansible_stuff.org b/ansible_stuff.org
index ea0f832..3ffdb3d 100644
--- a/ansible_stuff.org
+++ b/ansible_stuff.org
@@ -1060,6 +1060,55 @@ will bite me in the ass someday.
     - sed command
       https://unix.stackexchange.com/questions/144298/delete-the-last-character-of-a-string-using-string-manipulation-in-shell-script
 
+* <2023-12-21 Thu> ---------------------------------------------------------
+
+** fail2ban playbook
+
+http://slackbuilds.org/repository/15.0/network/fail2ban
+
+this seems like an easier slackbuild to begin ansible automation since
+there are no dependencies.
+
+- make sure we have sbopkg installed on system
+
+- rsync sbopkg repo
+
+- install fail2ban slackbuild
+
+    sbopkg 
+
+- confirm that the service is installed
+
+    fail2ban-client version
+
+- make /etc/rc.d/rc.fail2ban executable
+
+    chmod +x /etc/rc.d/rc.fail2ban
+
+- add to /etc/rc.local
+
+    if [ -x /etc/rc.d/rc.fail2ban ]; then
+            /etc/rc.d/rc.fail2ban start
+    fi
+
+- add to /etc/rc.local_shutdown
+
+    if [ -x /etc/rc.d/rc.fail2ban ]; then
+            /etc/rc.d/rc.fail2ban stop
+    fi
+
+- start up service like so:
+
+    /etc/rc.d/rc.fail2ban start
+
+- bring system DB up-to-date after new installation
+
+    updatedb
+
+- sync all writes to file system
+
+    sync
+
 * references
 2023-12-16 -- the following is a lists of ansible related URLs compiled so far.