LINUX.ORG.RU

Сообщения kotbykot

 

fail2ban на Cent OS валит ошибки, не могу разобраться.

кусок лога fail2ban

# tail /var/log/fail2ban.log
2015-09-09 13:00:24,459 fail2ban.filter [1953]: WARNING Unable to find a corresponding IP address for ::1: [Errno -9] Address family for hostname not supported
2015-09-09 13:00:24,459 fail2ban.filter [1953]: WARNING Unable to find a corresponding IP address for ::1: [Errno -9] Address family for hostname not supported
2015-09-09 13:00:25,461 fail2ban.filter [1953]: WARNING Unable to find a corresponding IP address for ::1: [Errno -9] Address family for hostname not supported
2015-09-09 13:00:27,464 fail2ban.filter [1953]: WARNING Unable to find a corresponding IP address for ::1: [Errno -9] Address family for hostname not supported
2015-09-09 13:00:27,465 fail2ban.filter [1953]: WARNING Unable to find a corresponding IP address for ::1: [Errno -9] Address family for hostname not supported
2015-09-09 13:00:28,467 fail2ban.filter [1953]: WARNING Unable to find a corresponding IP address for ::1: [Errno -9] Address family for hostname not supported
2015-09-09 13:00:28,468 fail2ban.filter [1953]: WARNING Unable to find a corresponding IP address for ::1: [Errno -9] Address family for hostname not supported
2015-09-09 13:00:29,469 fail2ban.filter [1953]: WARNING Unable to find a corresponding IP address for ::1: [Errno -9] Address family for hostname not supported
2015-09-09 13:00:29,571 fail2ban.actions[1953]: WARNING [asterisk-iptables] Ban 62.210.250.141
2015-09-09 13:00:29,872 fail2ban.filter [1953]: WARNING Unable to find a corresponding IP address for ::1: [Errno -9] Address family for hostname not supported

установлен asterisk, для него имеется такой конфиг (если честно, то грешу на него)

cat /etc/fail2ban/filter.d/asterisk.conf
# Fail2Ban filter for asterisk authentication failures
#

[INCLUDES]

# Read common prefixes. If any customizations available -- read them from
# common.local
before = common.conf

[Definition]

_daemon = asterisk

__pid_re = (?:\[\d+\])

iso8601 = \d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}\.\d+[+-]\d{4}

# All Asterisk log messages begin like this:
log_prefix= (?:NOTICE|SECURITY)%(__pid_re)s:?(?:\[C-[\da-f]*\])? \S+:\d*( in \w+:)?

failregex = ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Registration from '[^']*' failed for '<HOST>(:\d+)?' - (Wrong password|Username/auth name mismatch|No matching peer found|Not a local domain|Device does not match ACL|Peer is not supposed to register|ACL error \(permit/deny\)|Not a local domain)$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Call from '[^']*' \(<HOST>:\d+\) to extension '\d+' rejected because extension not found in context 'default'\.$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Host <HOST> failed to authenticate as '[^']*'$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s No registration for peer '[^']*' \(from <HOST>\)$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Host <HOST> failed MD5 authentication for '[^']*' \([^)]+\)$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Failed to authenticate (user|device) [^@]+@<HOST>\S*$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s hacking attempt detected '<HOST>'$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s SecurityEvent="(FailedACL|InvalidAccountID|ChallengeResponseFailed|InvalidPassword)",EventTV="([\d-]+|%(iso8601)s)",Severity="[\w]+",Service="[\w]+",EventVersion="\d+",AccountID="(\d*|<unknown>)",SessionID=".+",LocalAddress="IPV[46]/(UDP|TCP|WS)/[\da-fA-F:.]+/\d+",RemoteAddress="IPV[46]/(UDP|TCP|WS)/<HOST>/\d+"(,Challenge="[\w/]+")?(,ReceivedChallenge="\w+")?(,Response="\w+",ExpectedResponse="\w*")?(,ReceivedHash="[\da-f]+")?(,ACLName="\w+")?$
            ^(%(__prefix_line)s|\[\]\s*WARNING%(__pid_re)s:?(?:\[C-[\da-f]*\])? )Ext\. s: "Rejecting unknown SIP connection from <HOST>"$

ignoreregex =


# Author: Xavier Devlamynck / Daniel Black
#
# General log format - main/logger.c:ast_log
# Address format - ast_sockaddr_stringify
#
# First regex: channels/chan_sip.c
#
# main/logger.c:ast_log_vsyslog - "in {functionname}:" only occurs in syslog

Подскажите куда копать?

 , , ,

kotbykot
()

rdesktop подключение принтера windows 2008 R2

Подключаюсь через rdesktop к серверу.

rdesktop -k en-us -g 1100x700 -N -z -r printer:HP_LaserJet_Professional_m1132_MFP -r disk:linux=/home/<username>/ -r clipboard:CLIPBOARD -0 -a 16 -u <username> <host>

На сервере установлены драйвера, выбран порт TS001. Казалось бы все хорошо и принтер печатает, однако после завершения сеанса и открытия нового сеанса создается новый порт TS002 и так продолжается бесконечно. Мне как админу поменять порт принтера не составляет проблем, а вот у пользователей таких полномочий нет, да и криво все это.

Есть предложения как можно это исправить или пробросить принтер с клиента на сервер другим способом?

З.Ы. На клиентах Debian, Ubuntu, CentOS З.З.Ы. На сервере Win2008 R2

 , , , ,

kotbykot
()

XEN Работа DomU c двумя сетевыми картами

Имеем Debian Jessie с установленным гипервизором XEN 4.4.1 Есть 2 сетевых кабеля (разные VLAN, разные сети) подключенных к сетевым картам.

Задача: Dom0 и DomU должны работать с сетевыми картами

Установил сетевые мосты для eth0 и eth1, однако весь трафик идет через eth0 что я делаю не так?

/etc/network/interfaces

auto lo
iface lo inet loopback

# The primary network interface

allow-hotplug eth0
iface eth0 inet manual

auto xenbr0
iface xenbr0 inet static
        bridge_ports eth0
        address 192.168.1.24
        netmask 255.255.255.0
        network 192.168.1.0
        broadcast 192.168.1.255

allow-hotplug eth1
iface eth1 inet manual

auto xenbr1
iface xenbr1 inet static
        bridge_ports eth1
        address 192.168.1.25
        netmask 255.255.255.0
        network 192.168.1.0
        broadcast 192.168.1.255
        gateway 192.168.1.1

ifconfig

eth0      Link encap:Ethernet  HWaddr 98:4b:e1:74:c5:f0                                               
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1                                                  
          RX packets:879 errors:0 dropped:0 overruns:0 frame:0                                                 
          TX packets:289 errors:0 dropped:0 overruns:0 carrier:0                          
          collisions:0 txqueuelen:1000                                            
          RX bytes:136386 (133.1 KiB)  TX bytes:58049 (56.6 KiB)      
                                                                                                                                         
eth1      Link encap:Ethernet  HWaddr 98:4b:e1:74:c5:f2                 
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1                                                  
          RX packets:622 errors:0 dropped:0 overruns:0 frame:0                 
          TX packets:14 errors:0 dropped:0 overruns:0 carrier:0                                       
          collisions:0 txqueuelen:1000                                                                         
          RX bytes:112623 (109.9 KiB)  TX bytes:916 (916.0 B)                                       
                                                                                                                                                  
lo        Link encap:Local Loopback                                                              
          inet addr:127.0.0.1  Mask:255.0.0.0                                                           
          inet6 addr: ::1/128 Scope:Host                                                                 
          UP LOOPBACK RUNNING  MTU:65536  Metric:1
          RX packets:9 errors:0 dropped:0 overruns:0 frame:0
          TX packets:9 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:729 (729.0 B)  TX bytes:729 (729.0 B)

xenbr0    Link encap:Ethernet  HWaddr 98:4b:e1:74:c5:f0  
          inet addr:192.168.1.24  Bcast:192.168.1.255  Mask:255.255.255.0
          inet6 addr: fe80::9a4b:e1ff:fe74:c5f0/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:730 errors:0 dropped:0 overruns:0 frame:0
          TX packets:288 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:80443 (78.5 KiB)  TX bytes:55727 (54.4 KiB)

xenbr1    Link encap:Ethernet  HWaddr 98:4b:e1:74:c5:f2  
          inet addr:192.168.1.25  Bcast:192.168.1.255  Mask:255.255.255.0
          inet6 addr: fe80::9a4b:e1ff:fe74:c5f2/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:418 errors:0 dropped:0 overruns:0 frame:0
          TX packets:19 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:46655 (45.5 KiB)  TX bytes:1062 (1.0 KiB)

 , , ,

kotbykot
()

RSS подписка на новые темы