\u56e0\u70ba\u5de5\u4f5c\u9700\u8981\uff0c\u5728\u516c\u53f8\u5167\u90e8\u9700\u5229\u7528ftp\u4e0a\u50b3\u5c0f\u5de5\u5177\u6216\u662f\u6a94\u6848\u5230NAT\u4e3b\u6a5f\u4e0a\u9762
\u6240\u4ee5NAT\u4e3b\u6a5f\u4e0a\u9762\u6709\u958b\u653evsftpd\u670d\u52d9\uff0c\u56e0\u70ba\u662f\u6709\u6642\u5f8c\u624d\u6703\u7528\u5230,\u6240\u4ee5\u6703\u624b\u52d5
\u5c07\u670d\u52d9\u555f\u52d5\u5373\u505c\u6b62,\u4f46\u662f\u6709\u6642\u5019\u5fd8\u8a18\u505c\u6b62\u6642,\u9694\u5929\u67e5log\u5c31\u6703\u6709\u4e9b\u7121\u804a\u7684\u7db2\u53cb
\u4f86\u6e2c\u8a66\u9023\u7ddaftp\u771f\u662f\u6a5f\u8eca<\/p>\n
<\/p>\n
\u6240\u4ee5\u60f3\u4e86\u500b\u8fa6\u6cd5\u5c31\u662f\u5229\u7528\u4e4b\u524dfail2ban,\u597d\u50cf\u4e5f\u53ef\u4ee5\u4fdd\u8b77vsftpd,\u770b\u4e86\u4e00\u4e0b\u8a2d\u5b9a\u6a94\u6709<\/p>\n
\u5982\u4e0b<\/p>\n
[VSFTPD] # Option: logfile # Option: port # Option: timeregex # Option: timepattern # Option: failregex \u518d\u4f86\u5c31\u662f\u5c31\u662f\u8a2d\u5b9avsftpd\u7684log
# Option: enabled
# Notes.: enable monitoring for this section.
# Values: [true | false] Default: false
#
enabled = false (\u53ea\u8981\u5c07\u9019\u4e00\u884c\u6539\u6210 true\u5373\u53ef)<\/strong><\/p>\n
# Notes.: logfile to monitor.
# Values: FILE Default: \/var\/log\/secure
#
logfile = \/var\/log\/vsftpd.log <\/p>\n
# Notes.: specifies port to monitor
# Values: [ NUM | STRING ] Default:
#
port = ftp <\/p>\n
# Notes.: regex to match timestamp in VSFTPD logfile.
# Values: [Mar 7 17:53:28]
# Default: S{3}s{1,2}d{1,2} d{2}:d{2}:d{2}
#
timeregex = S{3}s{1,2}d{1,2} d{2}:d{2}:d{2} <\/p>\n
# Notes.: format used in “timeregex” fields definition. Note that ‘%’ must be
# escaped with ‘%’ (see http:\/\/rgruet.free.fr\/PQR2.3.html#timeModule<\/a>)
# Values: TEXT Default: %%b %%d %%H:%%M:%%S
#
timepattern = %%b %%d %%H:%%M:%%S <\/p>\n
# Notes.: regex to match the password failures messages in the logfile.
# Values: TEXT Default: Authentication failure|Failed password|Invalid user
#
failregex = FAIL LOGIN<\/p>\n
\u4fee\u6539 \/etc\/vsftpd\/vsftpd.conf
\u5c07#xferlog_file=\/var\/log\/vsftpd.log \u5c07#\u5b57\u865f\u62ff\u6389\u91cd\u65b0\u555f\u52d5vsftpd\u670d\u52d9\u5373\u53ef
\u56e0\u70ba\u4e4b\u524d\u7684\u8a2d\u5b9a maxfailures = 3 \u8868\u793a3\u6b21\u932f\u8aa4\u5c31\u5c01\u9396,\u6240\u4ee5\u53ef\u4ee5\u5c0f\u5c0f\u7684\u4fdd\u8b77\u4e00\u4e0bftp-server<\/p>\n