Commit 0dc08f3b authored by Phillip Smith (fukawi2)'s avatar Phillip Smith (fukawi2)
Browse files

fail2ban: add inventory hosts to ignoreip (whitelist)

parent 6f4ba5b0
......@@ -28,3 +28,11 @@ sender = fail2ban@{{ansible_fqdn}}
# fail2ban-client set unban --all
# see `fail2ban-client help` for full list of runtime commands
banaction = firewallcmd-allports
# "ignoreip" can be a list of IP addresses, CIDR masks or DNS hosts. Fail2ban
# will not ban a host which matches an address in this list. Several addresses
# can be defined using space (and/or comma) separator.
ignoreip = ::1
{% for host in groups['all'] %}
{{ hostvars[host]['inventory_hostname'] }}
{% endfor %}
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment