DevOps & CloudDocumentedScanned
fail2ban-reporter
Auto-report fail2ban banned IPs to AbuseIPDB and notify via Telegram.
Share:
Installation
npx clawhub@latest install fail2ban-reporterView the full skill documentation and source below.
Documentation
fail2ban Reporter
Monitor fail2ban bans and auto-report attackers to AbuseIPDB.
Setup
pass insert abuseipdb/api-keybash {baseDir}/scripts/install.shManual Usage
Report all currently banned IPs
bash {baseDir}/scripts/report-banned.sh
Check a specific IP
bash {baseDir}/scripts/check-ip.sh <ip>
Show ban stats
bash {baseDir}/scripts/stats.sh
Auto-Reporting
The install script sets up a fail2ban action that auto-reports new bans.
bash {baseDir}/scripts/install.sh # install auto-reporting
bash {baseDir}/scripts/uninstall.sh # remove auto-reporting
Heartbeat Integration
Add to HEARTBEAT.md to check for new bans periodically:
- [ ] Check fail2ban stats and report any unreported IPs to AbuseIPDB
Workflow
report-single.sh/var/log/abuseipdb-reports.logAPI Reference
See references/abuseipdb-api.md for full API docs.