Add ip manually to fail2ban

It is not possible to add an ip manually to fail2ban trough Plesk interface. Sometimes you detect an offending ip address which you want to ban from your system, before it is detected by recidive rule.

151 votes

Anonymous shared this idea · Oct 21, 2016 · Report… · Admin →

completed ·

AdminPlesk Staff (Community Manager, Plesk International GmbH) responded · Aug 7, 2024

This functionality was added in Plesk 18.0.63 (https://docs.plesk.com/release-notes/obsidian/change-log/#plesk-18063). We suggest you to update to Plesk 18.0.63 and check it out.

If you have any feedback on the implementation of this feature, please let us know on the forum: https://talk.plesk.com/forums/plesk-obsidian-for-linux.748/

Thank you!

— AY

Show previous admin responses (2)

An error occurred while saving the comment

EhudZ commented · April 23, 2022 2:41 PM · Report

The is possible:

fail2ban-client -vvv set httpd-forbidden banip 54.214.128.0/17

Or via:
fail2ban-client set your-jail-name banip 192.0.2.1
fail2ban-client set your-jail-name unbanip 192.0.2.1

Submitting...
Anonymous commented · June 16, 2021 1:38 AM · Report

Security is everything, it's a 5 star yes from me.

Submitting...
EhudZ commented · April 16, 2021 4:19 AM · Report

IMHO, the Plesk FireWall is the place for such IP...

Submitting...
Anonymous commented · October 6, 2020 10:01 PM · Report

+1

Submitting...
Ziad commented · September 23, 2020 2:00 AM · Report

You can use the below to block manually:

https://sidecode.io/dev-blog/block-ip-manually-fail2ban/

Submitting...
Ziad commented · September 23, 2020 1:57 AM · Report

of course it is necessary

Submitting...
Norbert commented · July 5, 2020 3:48 AM · Report

Absolutely NECESSARY!
One spammer, using 2 IP addresses swamps my server with tens of thousands of spam emails and I can do NOTHING to ban this IP addresses.

Such an important tool and it is not available (it is on cPanel for donkey years already, though)

Submitting...
Azurel commented · April 14, 2020 3:01 AM · Report

It is already possible out-of-box. You can create with PHP a textfile with bad ips and in modsecurity you add a own "jail" that use this file. Thats all.

Submitting...
GravuTrad commented · March 19, 2020 8:24 AM · Report

fail2ban-client set manbat banip <173.194.76.27> is not working

Submitting...
Atakan Köycü commented · January 27, 2019 9:59 PM · Report

+1

Submitting...
Anonymous commented · July 20, 2018 1:02 AM · Report

+1

Submitting...
J P commented · April 9, 2018 8:04 PM · Report

+1 this is definitely necessary. I had two IPs attack a site relentlessly, taking up 100% CPU. They couldn't be added to the jail unless through CLI

Submitting...
kevin Heath commented · April 9, 2018 7:23 PM · Report

+1

Submitting...
G J Piper commented · March 14, 2018 6:23 AM · Report

Yes having a GUI for "fail2ban-client set recidive (un)banip <IP Address>" would be fantastic. Seems like an easy addition since the client already exists.

Submitting...
Marco commented · November 21, 2017 2:07 AM · Report

+1

Submitting...
Anonymous commented · November 7, 2017 7:51 AM · Report

Why is not not already an option?

Submitting...
Anonymous commented · September 22, 2017 11:30 PM · Report

+1

Submitting...
Anonymous commented · July 21, 2017 2:09 AM · Report

+1

Submitting...
Anonymous commented · July 14, 2017 3:00 AM · Report

jep, need it also

Submitting...
Anonymous commented · July 14, 2017 2:59 AM · Report

jep, need it also

Submitting...