Wiki‎ > ‎

Fail2ban unban IP

posted Jul 10, 2016, 3:34 PM by Dong Xu   [ updated Jul 12, 2016, 7:46 AM ]
 

With Fail2Ban before v0.8.8:

fail2ban-client get YOURJAILNAMEHERE actionunban IPADDRESSHERE

With Fail2Ban v0.8.8 and later:

fail2ban-client set YOURJAILNAMEHERE unbanip IPADDRESSHERE

The hard part is finding the right jail:

  1. Use iptables -L -n to find the rule name...
  2. ...then use fail2ban-client status to get the actual jail names. The rule name and jail name may not be the same but it should be clear which one is related to which.

Step 1: Find IP Address to Unblock

Log in to your server via SSH and type in the following command:

iptables -L -n

Look for the IP address you want to unblock / unban.

Step 2: Get Jail Name of fail2ban Blocked IP Address

Now we must find the jail name this IP address is in. To do so, type the following:

fail2ban-client status

Step 3: Unban IP Address from fail2ban

For this example, we will remove an IP address jailed within ssh. To do so, type in the following:

fail2ban-client set ssh unbanip 123.123.123.123

The IP address should now be unbanned from fail2ban.


* * * Method 2 * * *

Step 1: Find IP Address to Unblock

Log in to your server via SSH and type in the following command:

iptables -L -n --line-numbers

Look for the IP address you want to unblock / unban. See the target of the IP address as well as the num (line number).

Step 2: Unban IP Address from fail2ban

For this example, we will remove an IP address with the target of fail2ban-ssh-ddos. To do so, type in the following:

iptables -D fail2ban-ssh-ddos 1

The IP address should now be unbanned from fail2ban.

====================================================


Comments