ilyamak04/wiki
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: ilyamak04:121f806ff0ad61ec63785ff0806b595f8a397a12
Branches Tags
ilyamak04:master
...
compare: ilyamak04:5f8444331ad3ef053daf5179528a481bec2cee23
Branches Tags
ilyamak04:master

3 Commits
121f806ff0 ... 5f8444331a

Author SHA1 Message Date
ilyamak04
5f8444331a ADD some haproxy
All checks were successful
Build MkDocs / build-and-deploy (push) Successful in 14s
Details
2025-05-28 20:52:05 +03:00
ilyamak04
96b180c4ff ADD some influx 2025-05-28 20:51:34 +03:00
ilyamak04
fa733107ba ADD fail2ban 2025-05-28 20:51:18 +03:00
3 changed files with 94 additions and 5 deletions
Show Stats Expand all files Collapse all files

16
docs/Other/InfluxDB.md
View File

@ -1,6 +1,6 @@
### Influx1.x ### Influx1.x
- `unflux` - подключиться - `unflux` - подключиться (`influx -ssl -host influx.mcarov.pro`)
- `show databases` - список бд - `show databases` - список бд
- `create database <db>` - создать бд - `create database <db>` - создать бд
- `drop database <db>` - удалить бд - `drop database <db>` - удалить бд
@ -30,6 +30,20 @@
- `influxd backup -database mydb /path/to/backup` - резервное копирование бд - `influxd backup -database mydb /path/to/backup` - резервное копирование бд
- `influxd restore -database mydb /path/to/backup` - восстановление бд - `influxd restore -database mydb /path/to/backup` - восстановление бд
#### HTTPS
- `influxdb.conf`
```conf
[http]
# Determines whether HTTP endpoint is enabled.
# enabled = true
enabled = true
bind-address = ":8086"
https-enabled = true
https-certificate = "/etc/letsencrypt/live/influx.mcarov.pro/fullchain.pem"
https-private-key = "/etc/letsencrypt/live/influx.mcarov.pro/privkey.pem"
```
### Influx2.x ### Influx2.x
- `SHOW BUCKETS` - показать список бакетов - `SHOW BUCKETS` - показать список бакетов

77
docs/Other/fail2ban.md Normal file
View File

@ -0,0 +1,77 @@
### Установка
```bash
sudo apt update && sudo apt install fail2ban -y
```
### Настройка
```bash
# рекомендуется, но необязательно
cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local
```
- `vi /etc/fail2ban/jail.local`
```bash
[DEFAULT]
ignoreip = 127.0.0.1/8 ::1
[sshd]
enabled = true
port = 10001
#Для Debian добавить:
#backend = systemd
# Если в течении 24 часов
findtime = 86400
# произведено 3 неудачных попытки логина,
maxretry = 3
# то банить IP навсегда.
bantime = -1
[nginx-bad-request]
enabled = true
port = http,https
filter = nginx-bad-request
logpath = /var/log/nginx/*access.log
maxretry = 3
findtime = 5m
bantime = 24h
[nginx-http-auth]
enabled = true
port = http,https
filter = nginx-http-auth
logpath = /var/log/nginx/*error.log
maxretry = 3
findtime = 5m
bantime = 24h
[nginx-botsearch]
enabled = true
port = http,https
filter = nginx-botsearch
logpath = /var/log/nginx/*access.log
maxretry = 5
findtime = 10m
bantime = 24h
[nginx-limit-req]
enabled = true
filter = nginx-limit-req
logpath = /var/log/nginx/*error.log
maxretry = 100
findtime = 30
bantime = 24h
```
- Проверка
```bash
fail2ban-server -t
fail2ban-client reload
fail2ban-client status
fail2ban-client status sshd # Статус защиты SSH
fail2ban-client status nginx-bad-reauest
fail2ban-client status nginx-botsearch
fail2ban-client status nginx-http-auth
fail2ban-client status nginx-limit-req
tail -f /var/log/fail2ban.log
```

6
docs/Vebsrv/Haproxy.md
View File

@ -1,9 +1,7 @@
### Разное ### Разное
```bash - `haproxy -f /etc/haproxy/haproxy.cfg -c` - тестируем
haproxy -f /etc/haproxy/haproxy.cfg -c - тестируем - `systemctl reload haproxy` - применяем
systemctl reload haproxy - применяем
```
--- ---