We use fail2ban also. It's good for automatically updating the Linux firewall based on the system logs. However, if you just want to block one port for everyone you can do it yourself with one firewall rule.
For instance, if you have a database server that should only be accessed by systems on the LAN. you can put in a rule to accept any computers on the LAN followed by a rule to refuse all connect requests. That way even if a hacker gets your database password he can't get into the system.
Jerry
On 6/9/2024 11:22 PM, Jeff Peng wrote:
We already have thousands of fw rules by fail2ban :)
On 2024-06-10 10:44, Jerry Stuckle via dovecot wrote:
If you don't want to accept any requests on port 143, can't you use the Linux firewall to reject them? That's what we do and it works well.
Jerry
dovecot mailing list -- dovecot@dovecot.org To unsubscribe send an email to dovecot-leave@dovecot.org