デフォルトだとREJECT通知 無駄なのでDROPへ変更
/etc/fail2ban/action.d/firewallcmd-common.conf
# Option: blocktype (ipv4/ipv6)
# Notes See iptables/firewalld man pages for jump targets. Common values are REJECT,
# REJECT –reject-with icmp-port-unreachable, DROP
コメントアウト行
# Values: STRING #blocktype = REJECT –reject-with <rejecttype>
追加行
blocktype = DROP
うーーん うまくいかない
