Skip to content

KaidenW03/comptia-linux-IntrusionPrevention

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
README.md
README.md
 
 
firewall_rules.nft.txt
firewall_rules.nft.txt
 
 
setup_firewall.sh
setup_firewall.sh
 
 

Repository files navigation

Local Firewall + Intrusion Prevention System

Overview

This project sets up a local firewall using nftables (or iptables) and integrates Fail2Ban for intrusion prevention. The firewall restricts incoming traffic to essential services (like SSH), and Fail2Ban monitors authentication logs to block IPs that show malicious activity, such as repeated failed SSH login attempts.

Focus: Network defense, SSH security.

Features

  • Host-based firewall configuration using nftables.
  • Default deny-all policy with selective allowed services.
  • Fail2Ban setup to block IP addresses showing brute-force patterns.
  • Automated installation and configuration scripts (Bash).
  • Logs and status checks for auditing blocked IPs.

Tools & Technologies

  • nftables or iptables (modern Linux firewall)
  • Fail2Ban (intrusion prevention)
  • Bash scripting

Setup Instructions

1. Clone the Repository

git clone https://github.com/KaidenW03/local-firewall-ips.git cd local-firewall-ips

2. Run the Script

sudo bash setup_firewall.sh

3. Verify Firewall & Fail2Ban

sudo nft list ruleset sudo fail2ban-client status sshd

About

Configures a host-based firewall using nftables and integrates Fail2Ban to block brute-force SSH attempts automatically, improving system security.

Topics

comptia-linux

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages