sudo apt install -y fail2ban
[sshd]
enabled = true
port = 22
maxretry = 4
findtime = 10m
bantime = 1h
backend = systemd
sudo tee /etc/fail2ban/jail.d/sshd.local >/dev/null <<'EOF'
[sshd]
enabled = true
port = 22
maxretry = 4
findtime = 10m
bantime = 1h
backend = systemd
EOF
[recidive]
enabled = true
logpath = /var/log/fail2ban.log
bantime = 1w
findtime = 1d
maxretry = 5
sudo tee /etc/fail2ban/jail.d/recidive.local >/dev/null <<'EOF'
[recidive]
enabled = true
logpath = /var/log/fail2ban.log
bantime = 1w
findtime = 1d
maxretry = 5
EOF
sudo systemctl enable --now fail2ban
fail2ban-client status sshd