{"id":9249,"date":"2024-03-07T03:18:12","date_gmt":"2024-03-07T00:18:12","guid":{"rendered":"https:\/\/sunucun.com.tr\/bilgi\/?post_type=dt_articles&#038;p=9249"},"modified":"2026-06-05T16:34:25","modified_gmt":"2026-06-05T13:34:25","slug":"fail2ban-nasil-kullanilir","status":"publish","type":"post","link":"https:\/\/sunucun.com.tr\/blog\/fail2ban-nasil-kullanilir\/","title":{"rendered":"Fail2Ban Nas\u0131l Kullan\u0131l\u0131r?"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 ez-toc-wrap-center counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<span class=\"ez-toc-title-toggle\"><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/sunucun.com.tr\/blog\/fail2ban-nasil-kullanilir\/#Fail2Banin_Kurulmasi_ve_Yapilandirilmasi\" >Fail2Ban&#8217;\u0131n Kurulmas\u0131 ve Yap\u0131land\u0131r\u0131lmas\u0131<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/sunucun.com.tr\/blog\/fail2ban-nasil-kullanilir\/#Fail2Ban_ile_SSH_Jailleri_Olusturma\" >Fail2Ban ile SSH Jailleri Olu\u015fturma<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/sunucun.com.tr\/blog\/fail2ban-nasil-kullanilir\/#Fail2Bani_Test_Edin\" >Fail2Ban&#8217;\u0131 Test Edin<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/sunucun.com.tr\/blog\/fail2ban-nasil-kullanilir\/#Fail2Ban-Client_ile_Izleme\" >Fail2Ban-Client ile \u0130zleme<\/a><\/li><\/ul><\/nav><\/div>\n\r\n<p class=\"wp-block-paragraph\">Fail2Ban, Linux sistemlerini ve sunucular\u0131n\u0131 brute-force sald\u0131r\u0131lar\u0131ndan koruyan Python ile yaz\u0131lm\u0131\u015f bir sald\u0131r\u0131 \u00f6nleme \u00e7er\u00e7evesidir. Sunucunuzdaki SSH i\u00e7in kaba kuvvet korumas\u0131 sa\u011flamak \u00fczere Fail2Ban&#8217;\u0131 kurabilirsiniz. Bu, sunucunuzun kaba kuvvet sald\u0131r\u0131lar\u0131na kar\u015f\u0131 g\u00fcvende olmas\u0131n\u0131 sa\u011flar. Ayr\u0131ca, yap\u0131lan kimlik do\u011frulama giri\u015fimlerinin say\u0131s\u0131na g\u00f6re sald\u0131r\u0131lar\u0131n g\u00fcc\u00fcn\u00fc izlemenize de olanak tan\u0131r.<\/p>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Kaba kuvvet sald\u0131r\u0131lar\u0131 son derece g\u00fc\u00e7l\u00fc olabilir ve g\u00fcnde binlerce ba\u015far\u0131s\u0131z kimlik do\u011frulama <a href=\"https:\/\/www.sunucun.com.tr\/blog\/dt-articles\/fail2ban-nasil-kullanilir\/\">denemesine<\/a> neden olabilir. Bu nedenle sunucunuzu bu sald\u0131r\u0131lardan nas\u0131l koruyaca\u011f\u0131n\u0131z\u0131 ve IP adreslerini nas\u0131l engelleyece\u011finizi anlamak \u00e7ok \u00f6nemlidir. Fail2Ban, bir kullan\u0131c\u0131n\u0131n engellenmeden \u00f6nce yapabilece\u011fi ba\u015far\u0131s\u0131z kimlik do\u011frulama giri\u015fimlerinin say\u0131s\u0131n\u0131 s\u0131n\u0131rland\u0131rarak kaba kuvvet sald\u0131r\u0131lar\u0131n\u0131 engelleme s\u00fcrecini otomatikle\u015ftirmenize olanak tan\u0131r. Bu, SSH anahtar \u00e7ifti kimlik do\u011frulamas\u0131 yerine uzaktan kimlik do\u011frulamas\u0131 i\u00e7in parola kullanan kullan\u0131c\u0131 hesaplar\u0131na sahip sunucular i\u00e7in son derece kullan\u0131\u015fl\u0131d\u0131r.<\/p>\r\n\r\n\r\n\r\n<blockquote class=\"wp-block-quote is-style-plain has-text-color has-background has-link-color wp-elements-8e9bb2b92c8a183c982b05a0b011dccb is-layout-flow wp-block-quote-is-layout-flow\" style=\"color: #000000; background-color: #ffffff;\">\r\n<p class=\"wp-block-paragraph\">Not<\/p>\r\n<cite>Bu k\u0131lavuzda Ubuntu kullan\u0131lmaktad\u0131r, ancak komutlar di\u011fer sistemler i\u00e7in de benzerdir.<\/cite><\/blockquote>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Fail2Banin_Kurulmasi_ve_Yapilandirilmasi\"><\/span>Fail2Ban&#8217;\u0131n Kurulmas\u0131 ve Yap\u0131land\u0131r\u0131lmas\u0131<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Fail2Ban&#8217;\u0131n kullan\u0131m\u0131 \u00fccretsizdir ve pop\u00fcler paket y\u00f6neticilerinin \u00e7o\u011fu arac\u0131l\u0131\u011f\u0131yla kurulabilir.<\/p>\r\n\r\n\r\n\r\n<ol class=\"wp-block-list\">\r\n<li>A\u015fa\u011f\u0131daki komutu \u00e7al\u0131\u015ft\u0131rarak Fail2Ban&#8217;\u0131 y\u00fckleyin:<\/li>\r\n<\/ol>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code><code>sudo apt-get install fail2ban<\/code><\/code><\/pre>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">2. Fail2ban&#8217;\u0131n sistem ba\u015flang\u0131c\u0131nda \u00e7al\u0131\u015ft\u0131\u011f\u0131ndan emin olmak i\u00e7in a\u015fa\u011f\u0131daki komutu kullan\u0131n:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code><code>sudo systemctl enable fail2ban.service<\/code><\/code><\/pre>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Kurulum tamamland\u0131ktan sonra, SSH sunucunuz i\u00e7in bir jail kurmak \u00fczere Fail2Ban&#8217;\u0131 yap\u0131land\u0131rmaya ba\u015flayabilirsiniz. Fail2Ban yap\u0131land\u0131rma dosyalar\u0131 a\u015fa\u011f\u0131daki \u00e7\u0131kt\u0131da g\u00f6sterildi\u011fi gibi \/etc\/fail2ban dizininde bulunur.<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code>\/etc\/fail2ban$ ls -alps\r\ntotal 68\r\n 4 drwxr-xr-x  6 root root  4096 Oct 12 18:21 .\/\r\n 4 drwxr-xr-x 94 root root  4096 Oct 12 18:21 ..\/\r\n 4 drwxr-xr-x  2 root root  4096 Oct 12 18:21 action.d\/\r\n 4 -rw-r--r--  1 root root  2334 Jan 18  2018 fail2ban.conf\r\n 4 drwxr-xr-x  2 root root  4096 Apr  4  2018 fail2ban.d\/\r\n 4 drwxr-xr-x  3 root root  4096 Oct 12 18:21 filter.d\/\r\n24 -rw-r--r--  1 root root 22897 Jan 18  2018 jail.conf\r\n 4 drwxr-xr-x  2 root root  4096 Oct 12 18:21 jail.d\/\r\n 4 -rw-r--r--  1 root root   645 Jan 18  2018 paths-arch.conf\r\n 4 -rw-r--r--  1 root root  2827 Jan 18  2018 paths-common.conf\r\n 4 -rw-r--r--  1 root root   573 Jan 18  2018 paths-debian.conf\r\n 4 -rw-r--r--  1 root root   738 Jan 18  2018 paths-opensuse.conf<\/code><\/pre>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Fail2Ban, jail.conf dosyas\u0131ndaki varsay\u0131lan yap\u0131land\u0131rmay\u0131 kullan\u0131r. Ancak, Fail2Ban paketindeki yeni g\u00fcncellemeler taraf\u0131ndan \u00fczerine yaz\u0131labilece\u011finden varsay\u0131lan yap\u0131land\u0131rma dosyalar\u0131n\u0131n kullan\u0131lmas\u0131 \u00f6nerilmez. Belirli bir hizmet i\u00e7in yap\u0131land\u0131rma olu\u015fturmak i\u00e7in tercih edilen yakla\u015f\u0131m, \/etc\/fail2ban dizininde .local uzant\u0131l\u0131 yeni bir yap\u0131land\u0131rma dosyas\u0131 olu\u015fturmakt\u0131r.<\/p>\r\n\r\n\r\n\r\n<blockquote class=\"wp-block-quote is-style-plain has-text-color has-background has-link-color wp-elements-c7190bb423d08c7cdb74b906abe10b13 is-layout-flow wp-block-quote-is-layout-flow\" style=\"color: #000000; background-color: #ffffff;\">\r\n<p class=\"wp-block-paragraph\">Not<\/p>\r\n<cite>Fail2ban jail, sisteminizi veya belirli bir hizmeti koruyan filtreler veya arg\u00fcmanlar i\u00e7eren bir yap\u0131land\u0131rma dosyas\u0131d\u0131r<\/cite><\/blockquote>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Fail2Ban_ile_SSH_Jailleri_Olusturma\"><\/span>Fail2Ban ile SSH Jailleri Olu\u015fturma<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<ol class=\"wp-block-list\">\r\n<li>Ayn\u0131 dizin i\u00e7inde jail.local ad\u0131nda yeni bir dosya olu\u015fturarak ba\u015flay\u0131n. Daha sonra sshd jail i\u00e7in gerekli g\u00fcvenlik yap\u0131land\u0131rmalar\u0131n\u0131 ekleyebilirsiniz.<\/li>\r\n<\/ol>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code>sudo nano \/etc\/fail2ban\/jail.local\r\n<\/code><\/pre>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">2. SSH hizmetinin g\u00fcvenli\u011fini ve engellemesini \u00f6zelle\u015ftirmek i\u00e7in Fail2Ban&#8217;\u0131n sa\u011flad\u0131\u011f\u0131 se\u00e7enekleri ke\u015ffedebilirsiniz.<\/p>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Fail2Ban Yap\u0131land\u0131rma Se\u00e7enekleri:<\/p>\r\n\r\n\r\n\r\n<figure class=\"wp-block-table\">\r\n<table>\r\n<tbody>\r\n<tr>\r\n<td>enabled<\/td>\r\n<td>Jail durumu (true\/false) &#8211; Bu, jaili etkinle\u015ftirir veya devre d\u0131\u015f\u0131 b\u0131rak\u0131r<\/td>\r\n<\/tr>\r\n<tr>\r\n<td>port<\/td>\r\n<td>Port \u00f6zellikleri<\/td>\r\n<\/tr>\r\n<tr>\r\n<td>filter<\/td>\r\n<td>\u00d6zel filtreleme (Log filtresi)<\/td>\r\n<\/tr>\r\n<tr>\r\n<td>logpath<\/td>\r\n<td>Hangi loglar\u0131 kullanmal\u0131<\/td>\r\n<\/tr>\r\n<tr>\r\n<td>maxretry<\/td>\r\n<td>Yasaklanmadan \u00f6nce yap\u0131lacak deneme say\u0131s\u0131<\/td>\r\n<\/tr>\r\n<tr>\r\n<td>findtime<\/td>\r\n<td>Ba\u015far\u0131s\u0131z oturum a\u00e7ma denemeleri aras\u0131nda ge\u00e7en s\u00fcre<\/td>\r\n<\/tr>\r\n<tr>\r\n<td>bantime<\/td>\r\n<td>Bir IP&#8217;nin yasakland\u0131\u011f\u0131 s\u00fcre<\/td>\r\n<\/tr>\r\n<tr>\r\n<td>ignoreip<\/td>\r\n<td>Yasaklanmayacak IP&#8217;ler<\/td>\r\n<\/tr>\r\n<\/tbody>\r\n<\/table>\r\n<\/figure>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">3. Yukar\u0131daki tablodaki bilgilerle OpenSSH sunucusu (sshd) i\u00e7in jail.local yap\u0131land\u0131rmas\u0131n\u0131 olu\u015fturabilirsiniz. Yap\u0131land\u0131rma se\u00e7eneklerini girdikten sonra, bu k\u0131lavuz \u00f6rne\u011finde kullan\u0131lan de\u011ferler a\u015fa\u011f\u0131daki \u00f6rnek dosyada listelenmi\u015ftir.<\/p>\r\n\r\n\r\n\r\n<blockquote class=\"wp-block-quote is-style-plain has-text-color has-background has-link-color wp-elements-70e5c6815b2ab1fd434ca22f2af8dd94 is-layout-flow wp-block-quote-is-layout-flow\" style=\"color: #000000; background-color: #ffffff;\">\r\n<p class=\"wp-block-paragraph\">Not<\/p>\r\n<cite>Fail2Ban yap\u0131land\u0131rma se\u00e7eneklerini ve de\u011ferlerini g\u00fcvenlik gereksinimlerinize g\u00f6re \u00f6zelle\u015ftirebilirsiniz.<\/cite><\/blockquote>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code>File: \/etc\/fail2ban\/jail.local\r\n\r\n[sshd]\r\nenabled = true\r\nport = ssh\r\nfilter = sshd\r\nlogpath = \/var\/log\/auth.log\r\nmaxretry = 3\r\nfindtime = 300\r\nbantime = 3600\r\nignoreip = 127.0.0.1<\/code><\/pre>\r\n\r\n\r\n\r\n<blockquote class=\"wp-block-quote is-style-plain has-text-color has-background has-link-color wp-elements-1088d279bc716dc1f618db2a2b257975 is-layout-flow wp-block-quote-is-layout-flow\" style=\"color: #000000; background-color: #ffffff;\">\r\n<p class=\"wp-block-paragraph\">Not<\/p>\r\n<cite>Etkin yap\u0131land\u0131rmay\u0131 false olarak ayarlayarak bir Fail2Ban jailini devre d\u0131\u015f\u0131 b\u0131rakabilirsiniz<\/cite><\/blockquote>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">4. Yap\u0131land\u0131rma se\u00e7eneklerini ve ilgili de\u011ferlerini belirledikten sonra dosyay\u0131 kaydedin ve a\u015fa\u011f\u0131daki komutla Fail2Ban hizmetini yeniden ba\u015flat\u0131n:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code><code>sudo systemctl restart fail2ban.service<\/code><\/code><\/pre>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">5. OpenSSH sunucu hizmetini yeniden ba\u015flatt\u0131ktan sonra, Fail2Ban bu yeni yap\u0131land\u0131rmay\u0131 kullan\u0131r ve sshd hizmeti i\u00e7in jail etkinle\u015ftirilir ve \u00e7al\u0131\u015f\u0131r.<\/p>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">6. \u015eimdi <code>\/etc\/ssh\/sshd_config<\/code> i\u00e7inde bulunan OpenSSH Yap\u0131land\u0131rma dosyas\u0131nda <code>PasswordAuthentication'<\/code>\u0131 yeniden etkinle\u015ftirerek bu i\u015flevi test edebilirsiniz. Bunu, se\u00e7ti\u011finiz metin d\u00fczenleyiciyi kullanarak de\u011feri hay\u0131rdan evete de\u011fi\u015ftirerek yap\u0131n. Bu sat\u0131rlar\u0131n yorumlanmam\u0131\u015f oldu\u011fundan emin olun.<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code>File: \/etc\/ssh\/sshd_config\r\n\r\n#To disable tunneled clear text passwords, change to no here!\r\nPasswordAuthentication yes\r\nPermitEmptyPasswords no<\/code><\/pre>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Bu, kullan\u0131c\u0131lar\u0131n SSH anahtar \u00e7iftlerine ek olarak kimlik do\u011frulama i\u00e7in parola kullanmalar\u0131na olanak tan\u0131r. Fail2Ban SSH \u00fczerindeki kaba kuvvet giri\u015fimlerini otomatik olarak alg\u0131lar ve kullan\u0131c\u0131lar\u0131 otomatik olarak engeller. Bu, hem parola tabanl\u0131 kimlik do\u011frulaman\u0131n hem de sunucunun g\u00fcvenli\u011fini b\u00fcy\u00fck \u00f6l\u00e7\u00fcde art\u0131r\u0131r ve y\u00f6netici ayr\u0131cal\u0131klar\u0131na sahip olmayan kullan\u0131c\u0131 hesaplar\u0131 i\u00e7in kullan\u0131\u015fl\u0131d\u0131r.<\/p>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Fail2Bani_Test_Edin\"><\/span>Fail2Ban&#8217;\u0131 Test Edin<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<ol class=\"wp-block-list\">\r\n<li>Bunu test etmek i\u00e7in yeni bir kullan\u0131c\u0131 hesab\u0131 olu\u015fturun, buna dev diyelim.<\/li>\r\n\r\n\r\n\r\n<li>Dev hesab\u0131na \u00fc\u00e7 kez yanl\u0131\u015f bir parola ile giri\u015f yapmay\u0131 deneyin.<\/li>\r\n\r\n\r\n\r\n<li>\u00dc\u00e7 ba\u015far\u0131s\u0131z denemeden sonra bir saat boyunca kimlik do\u011frulaman\u0131z engellenir.<\/li>\r\n<\/ol>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code>ssh dev@192.168.1.107\r\ndev@192.168.1.107's password:\r\nPermission denied, please try again.\r\ndev@192.168.1.107's password:\r\nPermission denied, please try again.\r\ndev@192.168.1.107's password:\r\ndev@192.168.1.107: Permission denied (publickey,password).\r\nssh dev@192.168.1.107\r\ndev@192.168.1.107's password:\r\nPermission denied, please try again.\r\ndev@192.168.1.107's password:\r\nConnection closed by 192.168.1.107 port 22\r\nsh dev@192.168.1.107\r\nssh: connect to host 192.168.1.107 port 22: Connection refused<\/code><\/pre>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Yukar\u0131daki \u00e7\u0131kt\u0131da g\u00f6rebilece\u011finiz gibi, art arda \u00fc\u00e7 ba\u015far\u0131s\u0131z denemeden sonra, Fail2Ban SSH ba\u011flant\u0131s\u0131n\u0131 aktif olarak engeller. Art arda \u00fc\u00e7 ba\u015far\u0131s\u0131z denemeden sonra ba\u011flant\u0131 zaman a\u015f\u0131m\u0131na u\u011frar ve kullan\u0131c\u0131 belirtilen s\u00fcre boyunca engellenir. Engellenen s\u00fcre i\u00e7inde tekrar ba\u011flanmay\u0131 denerseniz, &#8220;Ba\u011flant\u0131 reddedildi&#8221; hatas\u0131 al\u0131rs\u0131n\u0131z ve sunucuya SSH ba\u011flant\u0131s\u0131 kuramazs\u0131n\u0131z.<\/p>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Bu, Fail2Ban&#8217;\u0131n g\u00fcc\u00fcn\u00fc ve sa\u011flam do\u011fas\u0131n\u0131 ve SSH gibi hizmetler i\u00e7in zarif ve etkili g\u00fcvenlik duvarlar\u0131 olu\u015fturmak i\u00e7in nas\u0131l kullan\u0131labilece\u011fini g\u00f6stermektedir. Hizmet jaillerinizde g\u00fcvenlik gereksinimlerinizi kar\u015f\u0131layacak \u015fekilde \u00f6zelle\u015ftirebilir ve yeni yap\u0131land\u0131rma se\u00e7eneklerini kolayca uygulayabilirsiniz.<\/p>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">4. Fail2Ban&#8217;\u0131 uygulay\u0131p test ettikten sonra, \u015fimdi <code>Fail2Ban-client<\/code> ile \u00e7e\u015fitli ba\u015far\u0131s\u0131z kimlik do\u011frulama giri\u015fimlerini ve engellenen IP&#8217;leri nas\u0131l izleyip analiz edece\u011finize bir g\u00f6z atabilirsiniz.<\/p>\r\n\r\n\r\n\r\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Fail2Ban-Client_ile_Izleme\"><\/span>Fail2Ban-Client ile \u0130zleme<span class=\"ez-toc-section-end\"><\/span><\/h2>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Fail2Ban&#8217;\u0131n en b\u00fcy\u00fck avantajlar\u0131ndan biri, t\u00fcm ba\u015far\u0131s\u0131z kimlik do\u011frulama giri\u015fimlerini ve engellenen \u00e7e\u015fitli IP adreslerini aktif olarak izlemenize olanak sa\u011flamas\u0131d\u0131r. Bu bilgiler, IP adreslerinin k\u00f6kenlerini analiz ederek kar\u015f\u0131la\u015ft\u0131\u011f\u0131n\u0131z sald\u0131r\u0131lar\u0131n \u00f6l\u00e7e\u011fini ve sald\u0131r\u0131lar\u0131n co\u011frafi konumunu anlaman\u0131za yard\u0131mc\u0131 olur.<\/p>\r\n\r\n\r\n\r\n<ol class=\"wp-block-list\">\r\n<li>Fail2Ban&#8217;\u0131n ve aktif jaillerin durumunu kontrol etmek i\u00e7in Fail2Ban-client arac\u0131n\u0131 kullanabilirsiniz. Bu, a\u015fa\u011f\u0131daki komut \u00e7al\u0131\u015ft\u0131r\u0131larak yap\u0131labilir:<\/li>\r\n<\/ol>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code>sudo fail2ban-client status<\/code><\/pre>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code>Status\r\n|- Number of jail:\t1\r\n`- Jail list:\tsshd<\/code><\/pre>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Yukar\u0131daki \u00e7\u0131kt\u0131da g\u00f6sterildi\u011fi gibi, aktif jail listesi ilgili jaillerin adlar\u0131yla birlikte g\u00f6r\u00fcnt\u00fclenir. Yukar\u0131daki durumda sshd jail&#8217;inin aktif oldu\u011funu g\u00f6rebilirsiniz.<\/p>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">2. SSHD gibi belirli bir jail ile ilgili durum ve bilgileri g\u00f6r\u00fcnt\u00fclemek i\u00e7in a\u015fa\u011f\u0131daki komutu kullanabilirsiniz:<\/p>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code>sudo fail2ban-client status sshd<\/code><\/pre>\r\n\r\n\r\n\r\n<pre class=\"wp-block-code\"><code>Status for the jail: sshd\r\n|- Filter\r\n|  |- Currently failed:\t1\r\n|  |- Total failed:\t4\r\n|  `- File list:\t\/var\/log\/auth.log\r\n`- Actions\r\n   |- Currently banned:\t1\r\n   |- Total banned:\t1\r\n   `- Banned IP list:\t192.168.1.101<\/code><\/pre>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Yukar\u0131daki \u00e7\u0131kt\u0131 size sshd jail ile ilgili durum ve bilgileri g\u00f6sterir. Toplam d\u00f6rt ba\u015far\u0131s\u0131z kimlik do\u011frulama giri\u015fiminiz ve bir yasakl\u0131 IP adresiniz oldu\u011funu g\u00f6rebilirsiniz. Bu, sizi potansiyel hedefli sald\u0131r\u0131lara kar\u015f\u0131 uyarabilece\u011fi i\u00e7in faydal\u0131d\u0131r.<\/p>\r\n\r\n\r\n\r\n<p class=\"wp-block-paragraph\">Kaba kuvvet korumas\u0131 i\u00e7in Fail2Ban&#8217;\u0131 ba\u015far\u0131yla kurdunuz, uygulad\u0131n\u0131z, test ettiniz ve analiz ettiniz. Uzaktan kimlik do\u011frulama g\u00fcvenli\u011finizi ayarlamay\u0131 tamamlad\u0131n\u0131z.<\/p>\r\n","protected":false},"excerpt":{"rendered":"<p>Fail2Ban, Linux sistemlerini ve sunucular\u0131n\u0131 brute-force sald\u0131r\u0131lar\u0131ndan koruyan Python ile yaz\u0131lm\u0131\u015f bir sald\u0131r\u0131 \u00f6nleme \u00e7er\u00e7evesidir. Sunucunuzdaki SSH i\u00e7in kaba kuvvet korumas\u0131 sa\u011flamak \u00fczere Fail2Ban&#8217;\u0131 kurabilirsiniz. Bu, sunucunuzun kaba kuvvet sald\u0131r\u0131lar\u0131na kar\u015f\u0131 g\u00fcvende olmas\u0131n\u0131 sa\u011flar. Ayr\u0131ca, yap\u0131lan kimlik do\u011frulama giri\u015fimlerinin say\u0131s\u0131na g\u00f6re sald\u0131r\u0131lar\u0131n g\u00fcc\u00fcn\u00fc izlemenize de olanak tan\u0131r. Kaba kuvvet sald\u0131r\u0131lar\u0131 son derece g\u00fc\u00e7l\u00fc olabilir ve&hellip;<\/p>\n","protected":false},"author":1,"featured_media":9248,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[1525],"tags":[],"class_list":["post-9249","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-siber-guvenlik"],"_links":{"self":[{"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/posts\/9249","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=9249"}],"version-history":[{"count":1,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/posts\/9249\/revisions"}],"predecessor-version":[{"id":16649,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/posts\/9249\/revisions\/16649"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/media\/9248"}],"wp:attachment":[{"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=9249"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=9249"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sunucun.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=9249"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}