Fail2Ban
Daemon to ban hosts that cause multiple authentication errors

Fail2Ban is an open-source intrusion prevention daemon that monitors log files for repeated failed authentication attempts and automatically updates firewall rules to block offending IP addresses. It supports a wide range of standard log formats out of the box, including sshd and Apache, and is highly configurable. The tool runs on Linux systems and is distributed under the GNU General Public License.
Fail2Ban scans log files for repeated authentication failures and dynamically updates firewall rules to temporarily ban the offending IP addresses.
Linux system administrators and server operators
Background.
- Status
- launched
- Business model
- open-source
Founders
- Cyril Jaquier
Similar projects.
Editorial take on the space this project sits in — momentum signals, adjacent moves, our call on whether the wedge is real. Get pinged when we publish a new read or when the landscape shifts.
Have a take on this space?
Tell us what you’d build differently, where you think the incumbents miss, or what we’ve gotten wrong about this project. Comments + reactions are coming soon.