From 2eff66dd8aa6f995cf4081b4c31fb5d7bc864b03 Mon Sep 17 00:00:00 2001
From: Jelle van der Waa <jelle@archlinux.org>
Date: Sun, 21 Jun 2020 21:54:17 +0200
Subject: [PATCH] Add fail2ban for sshd on gemini

---
 host_vars/gemini.archlinux.org     | 5 +++++
 playbooks/gemini.archlinux.org.yml | 1 +
 2 files changed, 6 insertions(+)

diff --git a/host_vars/gemini.archlinux.org b/host_vars/gemini.archlinux.org
index 89b7d23f3..056d8abd0 100644
--- a/host_vars/gemini.archlinux.org
+++ b/host_vars/gemini.archlinux.org
@@ -23,3 +23,8 @@ zabbix_agent_templates:
   - Template OS Linux
   - Template App Borg Backup
   - Template App Nginx
+
+fail2ban_jails:
+  sshd: true
+  postfix: false
+  dovecot: false
diff --git a/playbooks/gemini.archlinux.org.yml b/playbooks/gemini.archlinux.org.yml
index b9d4b81bb..d12db8e0e 100644
--- a/playbooks/gemini.archlinux.org.yml
+++ b/playbooks/gemini.archlinux.org.yml
@@ -15,3 +15,4 @@
     - { role: certbot }
     - { role: nginx }
     - { role: archive }
+    - { role: fail2ban }
-- 
GitLab