As soon as you buy a Linux-based virtual server, thousands of malicious bots on the internet will try to infiltrate your server by trying random passwords over your SSH port (port 22). In fact, these attempts can become so intense that your server's processor can swell. Here, Fail2Ban is an amazing software that detects these harmful IP addresses from log files and automatically blocks them in the Firewall.
Connect to your server with root privileges. For Ubuntu and Debian:
Turkey (Türkçe)
Worldwide (English)
sudo apt update
sudo apt install fail2ban -yFor AlmaLinux and CentOS, you must first add the EPEL repository:
sudo dnf install epel-release -y
sudo dnf install fail2ban -yAfter Fail2Ban is installed, we must create a special configuration for ourselves (jail.local) by copying the default configuration file (jail.conf):
sudo cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.localOpen the file with the nano /etc/fail2ban/jail.local command and find the following basic protection settings:
After saving the settings, activate Fail2Ban and ensure it runs automatically even when the server restarts:
sudo systemctl start fail2ban
sudo systemctl enable fail2banIf you want to see which IP addresses have been blocked during the SSH connection, you can use the sudo fail2ban-client status sshd command. If you intend to keep your business-critical data completely safe, take advantage of the professional level İyibirNet VDS Server privileges with hardware protection now.
Copyright © 2026 All Rights Reserved
