fail2ban installation not running

[Thechaser]

Hello all;

I followed this procedure:
https://pve.proxmox.com/wiki/Fail2ban

But somehow I get the following error when I request the status of the service:

root@lenovozfs:~# /etc/init.d/fail2ban status
× fail2ban.service - Fail2Ban Service
     Loaded: loaded (/lib/systemd/system/fail2ban.service; enabled; preset: enabled)
     Active: failed (Result: exit-code) since Fri 2024-04-19 16:55:53 CEST; 10min ago
   Duration: 76ms
       Docs: man:fail2ban(1)
    Process: 627428 ExecStart=/usr/bin/fail2ban-server -xf start (code=exited, status=255/EXCEPTION)
   Main PID: 627428 (code=exited, status=255/EXCEPTION)
        CPU: 73ms

Apr 19 16:55:53 lenovozfs systemd[1]: Started fail2ban.service - Fail2Ban Service.
Apr 19 16:55:53 lenovozfs fail2ban-server[627428]: 2024-04-19 16:55:53,247 fail2ban.configreader   [627428]: WARNING 'allowipv6' not defined in 'Definition'. Using default one: 'auto'
Apr 19 16:55:53 lenovozfs fail2ban-server[627428]: 2024-04-19 16:55:53,254 fail2ban                [627428]: ERROR   Failed during configuration: Have not found any log file for sshd jail
Apr 19 16:55:53 lenovozfs fail2ban-server[627428]: 2024-04-19 16:55:53,258 fail2ban                [627428]: ERROR   Async configuration of server failed
Apr 19 16:55:53 lenovozfs systemd[1]: fail2ban.service: Main process exited, code=exited, status=255/EXCEPTION
Apr 19 16:55:53 lenovozfs systemd[1]: fail2ban.service: Failed with result 'exit-code'.

this is the information of my files:

/etc/fail2ban/filter.d/proxmox.conf

  GNU nano 7.2                                                                                                                                      /etc/fail2ban/filter.d/proxmox.conf                                                                                                                                              
[Definition]
failregex = pvedaemon\[.*authentication failure; rhost=<HOST> user=.* msg=.*
ignoreregex =

/etc/fail2ban/jail.local

(end of file)

[proxmox]
enabled = true
port = https,http,8006
filter = proxmox
backend = systemd
maxretry = 10
findtime = 2d
bantime = 1h

Thank you in advance, if you need more information please let me know

 

[Thechaser]

Update:

In this file I made an extra update after some googling
/etc/fail2ban/jail.local

[sshd]

# To use more aggressive sshd modes set filter parameter "mode" in jail.local:
# normal (default), ddos, extra or aggressive (combines all).
# See "tests/files/logs/sshd" or "filter.d/sshd.conf" for usage example and details.
#mode   = normal
port    = ssh
logpath = %(sshd_log)s
backend = systemd
#backend = %(sshd_backend)s

Now the service seems active.

Strange that this is not metioned in the wiki, on all three promox I had the same error and needed the fix.

 

[Home122]

@Thechaser, your solution worked for me. I've created a script to install fail2ban with all those settings at:

https://raw.githubusercontent.com/CraftzAdmin/homelab/main/scripts/fail2ban_setup.sh

bash -c "$(wget -qLO - https://raw.githubusercontent.com/CraftzAdmin/homelab/main/scripts/fail2ban_setup.sh)"

Thanks!

 

[JohnnyBeGood]

Thank you @Home122 for sharing!
I've tried many guides online and this is by far the best one!