···

       
100
       
 
       
    "fail2ban/action.d/abuseipdb-agenix.conf".text = ''

     

       
101
       
 
       
      [Definition]

     

       
102
       
 
       
      # Report IP to AbuseIPDB, reading API key from Agenix secret file

     

       
103
       
-
       
      # Based on official fail2ban abuseipdb.conf but with API key from Agenix

     

       
104
       
-
       
      # Note: Must be on single line (no backslash continuation) for INI parser

     

       
105
       
-
       
      # Rate limiting: sleep briefly before reporting to avoid 429 Too Many Requests

     

       
106
       
-
       
      actionban = sleep 5; curl --fail 'https://api.abuseipdb.com/api/v2/report' -H 'Accept: application/json' -H 'Key: $(cat /run/agenix/abuseipdb)' --data-urlencode 'ip=<ip>' --data-urlencode 'comment=<matches>' --data 'categories=<abuseipdb_category>'

     

       
107
       
 
       


     

       
108
       
 
       
      actionstart =

     

       
109
       
 
       
      actionstop =

     

···

       
100
       
 
       
    "fail2ban/action.d/abuseipdb-agenix.conf".text = ''

     

       
101
       
 
       
      [Definition]

     

       
102
       
 
       
      # Report IP to AbuseIPDB, reading API key from Agenix secret file

     

       
103
       
+
       
      # Simple version without <matches> to avoid parameter substitution issues

     

       
104
       
+
       
      actionban = sleep 1; curl --fail 'https://api.abuseipdb.com/api/v2/report' -H 'Accept: application/json' -H 'Key: $(cat /run/agenix/abuseipdb)' --data-urlencode 'ip=<ip>' --data 'categories=<abuseipdb_category>'

     

       
0
       
 
       

     

       
0
       
 
       

     

       
105
       
 
       


     

       
106
       
 
       
      actionstart =

     

       
107
       
 
       
      actionstop =