From 0d421e54eb7024e0accebd7b362ae9eef33eadb0 Mon Sep 17 00:00:00 2001
From: notohh <github@notohh.dev>
Date: Wed, 14 Jun 2023 04:44:39 -0400
Subject: [PATCH] security: init fail2ban

---
 modules/security.nix | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/modules/security.nix b/modules/security.nix
index 64ef83b..1a6454c 100644
--- a/modules/security.nix
+++ b/modules/security.nix
@@ -47,4 +47,14 @@
     acceptTerms = true;
     defaults.email = "github@notohh.dev";
   };
+  services.fail2ban = {
+    enable = true;
+    maxretry = 3;
+    bantime = "10m";
+    ignoreIP = [
+      "192.168.0.0/16"
+      "172.16.0.0/12"
+      "10.0.0.0/8"
+    ];
+  };
 }