Fail2ban with Joplin Server: is it possible?

tom · 2024-04-06T18:11:24.157Z

Hi everyone,

some time ago I asked if anyone had managed to set up fail2ban together with Joplin Server on their own server. Unfortunately, I haven't managed to do this myself yet. Has anyone managed to do this before? I would appreciate a short feedback.

Thank you very much.

nokoa77 · 2024-07-21T07:37:44.053Z

Hi,
Very good question, I would be interested too
Bruno

michal.borek · 2024-11-16T17:02:05.534Z

I've made a simple fail2ban configuration

The jail.d/default-debian.cong:

[joplin-403]
enabled = true
port = http,https
filter = joplin-403
action = iptables-multiport[name=joplin-403, port="http,https"]
logpath = /var/log/apache2/access.log
backend = polling
bantime = 3600
findtime = 600
maxretry = 3

and filter.d/joplin-403.conf:

[Definition]
failregex = ^<HOST> - .* "(GET|POST) /login.*" 403
ignoreregex =

This is a very basic setup but works for me. I haven't played with different backends yet (polling is probably not the most efficient one, but for low-traffic servers should be OK).

I hope it helps.