firewalld[598]: ERROR: INVALID_PORT: 0:65535″のログがなんか大量に
/etc/fail2ban/jail.confにある
port = 0:65535 から port = 0-65535へ変更
/etc/action.d/firewallcmd-common.confも同様
あとこんな記述も
/etc/fail2ban/action.d/firewallcmd-rich-rules.conf, as the fix in github 8
# change line 40 and 42 from
actionban = ports="<port>"; for p in $(echo $ports | tr ", " " "); do firewall-cmd --add-rich-rule="%(fwcmd_rich_rule)s"; done
actionunban = ports="<port>"; for p in $(echo $ports | tr ", " " "); do firewall-cmd --remove-rich-rule="%(fwcmd_rich_rule)s"; done
# to
actionban = ports="$(echo '<port>' | sed s/:/-/g)"; for p in $(echo $ports | tr ", " " "); do firewall-cmd --add-rich-rule="%(fwcmd_rich_rule)s"; done
actionunban = ports="$(echo '<port>' | sed s/:/-/g)"; for p in $(echo $ports | tr ", " " "); do firewall-cmd --remove-rich-rule="%(fwcmd_rich_rule)s"; done
