tar -zxvf fail2ban-1.1.0.tar.gz
cd fail2ban-1.1.0
python3 setup.py install

mv /usr/local/bin/fail2ban-regex /usr/bin/fail2ban-regex
mv /usr/local/bin/fail2ban-server /usr/bin/fail2ban-server
mv /usr/local/bin/fail2ban-client /usr/bin/fail2ban-client
mv /usr/local/bin/fail2ban-testcases /usr/bin/fail2ban-testcases

cp files/redhat-initd /etc/init.d/fail2ban
chkconfig fail2ban on

systemctl enable fail2ban
systemctl start fail2ban
systemctl status fail2ban

目录结构
/etc/fail2ban # fail2ban服务配置目录
/etc/fail2ban/action.d # iptables、mail等动作文件目录
/etc/fail2ban/filter.d # 条件匹配文件目录，过滤日志关键内容
/etc/fail2ban/jail.conf # fail2ban防护配置文件
/etc/fail2ban/fail2ban.conf # fail2ban配置文件，定义日志级别、日志、sock文件位置等

cd /etc/fail2ban # 进入配置文件所在的目录
cp jail.conf jail.local # 备份配置文件

基本配置
cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local

[sshd]
enabled = true
port = ssh
logpath = %(sshd_log)s
#backend = %(sshd_backend)s
backend = systemd

systemctl restart fail2ban

查看当前运行的监控服务
fail2ban-client status
fail2ban-client status sshd

查看fail2ban日志
tail -f /var/log/fail2ban.log