fusionpbx-ldap/Install_Scripts/ubuntu/resources/fail2ban/auth-challenge-ip.conf

# Fail2Ban configuration file
#

[Definition]

# Option:  failregex
# Notes.:  regex to match the password failures messages in the logfile. The
#          host must be matched by a group named "host". The tag "<HOST>" can
#          be used for standard IP/hostname matching and is only an alias for
#          (?:::f{4,6}:)?(?P<host>[\w\-.^_]+)
# Values:  TEXT
#
#[WARNING] sofia_reg.c:1792 SIP auth challenge (INVITE) on sofia profile 'internal' for [+972592277524@xxx.xxx.xxx.xxx] from ip 209.160.120.12 
failregex = \[WARNING\] sofia_reg.c:\d+ SIP auth challenge \((INVITE|REGISTER)\) on sofia profile \'.*\' for \[.*@\d+.\d+.\d+.\d+\] from ip <HOST>


# Option:  ignoreregex
# Notes.:  regex to ignore. If this regex matches, the line is ignored.
# Values:  TEXT
#
ignoreregex =
copied over install scripts to adapt 2022-09-05 13:34:53 +00:00			`# Fail2Ban configuration file`
			`#`

			`[Definition]`

			`# Option: failregex`
			`# Notes.: regex to match the password failures messages in the logfile. The`
			`# host must be matched by a group named "host". The tag "<HOST>" can`
			`# be used for standard IP/hostname matching and is only an alias for`
			`# (?:::f{4,6}:)?(?P<host>[\w\-.^_]+)`
			`# Values: TEXT`
			`#`
			`#[WARNING] sofia_reg.c:1792 SIP auth challenge (INVITE) on sofia profile 'internal' for [+972592277524@xxx.xxx.xxx.xxx] from ip 209.160.120.12`
			`failregex = \[WARNING\] sofia_reg.c:\d+ SIP auth challenge \((INVITE\|REGISTER)\) on sofia profile \'.\' for \[.@\d+.\d+.\d+.\d+\] from ip <HOST>`


			`# Option: ignoreregex`
			`# Notes.: regex to ignore. If this regex matches, the line is ignored.`
			`# Values: TEXT`
			`#`
			`ignoreregex =`