Installing Fail2Ban on CentOS 8

Fail2Ban is a piece of software commonly used to protect servers or websites from brute-force login attacks. It monitors logs of various services (such as SSH, FTP, Apache, etc.) and bans IP addresses that exceed a certain number of failed login attempts.

To install Fail2Ban on CentOS 8, you can follow these steps:

sudo dnf update

sudo dnf install fail2ban

sudo systemctl start fail2ban

sudo systemctl enable fail2ban

1. Open a terminal or SSH into your CentOS 8 server.
2. Update the package manager by running the following command:
3. Install the Fail2Ban package by running the following command:
4. Start the Fail2Ban service by running the following command:
5. Enable the Fail2Ban service to start on boot:

Fail2Ban is now successfully installed on your CentOS 8 server. The default configuration file is located at /etc/fail2ban/jail.conf, and you can customize it according to your needs.

If you want to protect specific services, you can create custom configuration files in the /etc/fail2ban/jail.d/ directory. An example configuration file for securing SSH can be created as follows:

sudo nano /etc/fail2ban/jail.d/sshd.local

Inside the file, you can add the following content:

[sshd]
      enabled =true
      port = ssh
      logpath = %(sshd_log)s
      maxretry = 3
  

Save and exit the file. This configuration will ban IP addresses that have more than 3 failed login attempts for SSH.

You can restart the Fail2Ban service after making any modifications to the configuration files:

sudo systemctl restart fail2ban

That's it! You have now successfully installed and configured Fail2Ban on your CentOS 8 server to protect your website or server from brute-force login attacks.