%EC%9D%84%20%EC%B2%98%EB%A6%AC%ED%95%98%EB%8A%94%20%EC%A4%91%20%EC%98%A4%EB%A5%98%EA%B0%80%20%EB%B0%9C%EC%83%9D%ED%96%88%EC%8A%B5%EB%8B%88%EB%8B%A4..png)
내 우분투 서버 16.04에 실패2반 서비스를 설치하려고 하는데 이 오류가 발생하고 실패2반 서비스가 시작되지 않습니다. 무엇이 문제입니까?
root@clm:~# apt install fail2ban
Reading package lists... Done
Building dependency tree
Reading state information... Done
fail2ban is already the newest version (0.9.3-1).
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
1 not fully installed or removed.
After this operation, 0 B of additional disk space will be used.
Do you want to continue? [Y/n] y
Setting up fail2ban (0.9.3-1) ...
Job for fail2ban.service failed because the control process exited with error code. See "systemctl status fail2ban.service" and "journalctl -xe" for details.
invoke-rc.d: initscript fail2ban, action "start" failed.
● fail2ban.service - Fail2Ban Service
Loaded: loaded (/lib/systemd/system/fail2ban.service; enabled; vendor preset: enabled)
Active: activating (auto-restart) (Result: exit-code) since Fri 2017-12-29 18:08:01 CET; 8ms ago
Docs: man:fail2ban(1)
Process: 4888 ExecStart=/usr/bin/fail2ban-client -x start (code=exited, status=255)
Dec 29 18:08:01 domain systemd[1]: Failed to start Fail2Ban Service.
Dec 29 18:08:01 domain systemd[1]: fail2ban.service: Unit entered failed state.
Dec 29 18:08:01 domain systemd[1]: fail2ban.service: Failed with result 'exit-code'.
dpkg: error processing package fail2ban (--configure):
subprocess installed post-installation script returned error exit status 1
Errors were encountered while processing:
fail2ban
E: Sub-process /usr/bin/dpkg returned an error code (1)
로그에는 다음과 같이 진행된다고 나와 있습니다.
root@clm:~# systemctl status fail2ban.service
● fail2ban.service - Fail2Ban Service
Loaded: loaded (/lib/systemd/system/fail2ban.service; enabled; vendor preset: enabled)
Active: inactive (dead) (Result: exit-code) since Fri 2017-12-29 18:27:09 CET; 9min ago
Docs: man:fail2ban(1)
Process: 7277 ExecStop=/usr/bin/fail2ban-client stop (code=exited, status=0/SUCCESS)
Process: 7301 ExecStart=/usr/bin/fail2ban-client -x start (code=exited, status=255)
Main PID: 7026 (code=killed, signal=TERM)
Dec 29 18:27:09 domain systemd[1]: fail2ban.service: Control process exited, code=exited status=255
Dec 29 18:27:09 domain systemd[1]: Failed to start Fail2Ban Service.
Dec 29 18:27:09 domain systemd[1]: fail2ban.service: Unit entered failed state.
Dec 29 18:27:09 domain systemd[1]: fail2ban.service: Failed with result 'exit-code'.
Dec 29 18:27:09 domain systemd[1]: fail2ban.service: Service hold-off time over, scheduling restart.
Dec 29 18:27:09 domain systemd[1]: Stopped Fail2Ban Service.
Dec 29 18:27:09 domain systemd[1]: fail2ban.service: Start request repeated too quickly.
Dec 29 18:27:09 domain systemd[1]: Failed to start Fail2Ban Service.
root@clm:~# tail -f /var/log/fail2ban.log
2017-12-29 18:26:08,198 fail2ban.actions [7026]: INFO Set banTime = 600
2017-12-29 18:26:08,262 fail2ban.filter [7026]: INFO Added logfile = /var/log/auth.log
2017-12-29 18:26:08,330 fail2ban.filter [7026]: INFO Set jail log file encoding to UTF-8
2017-12-29 18:26:08,331 fail2ban.filter [7026]: INFO Set maxRetry = 5
2017-12-29 18:26:08,331 fail2ban.filter [7026]: INFO Set maxlines = 10
2017-12-29 18:26:08,448 fail2ban.server [7026]: INFO Jail sshd is not a JournalFilter instance
2017-12-29 18:26:08,465 fail2ban.jail [7026]: INFO Jail 'sshd' started
2017-12-29 18:27:05,924 fail2ban.server [7026]: INFO Stopping all jails
2017-12-29 18:27:06,756 fail2ban.jail [7026]: INFO Jail 'sshd' stopped
2017-12-29 18:27:06,831 fail2ban.server [7026]: INFO Exiting Fail2ban
답변1
내 생각에는 구성 파일에 문제가 있는 것 같습니다. 달리기를 해보세요
fail2ban-server -f -x
무슨 일이 일어나는지 봐
답변2
자, 여기에 문제가 있습니다
을 확인한 후 journalctl -xe하나를 발견했습니다(아마도 잘못된 구성/버그임). 로그는 다음과 같습니다.
Dec 29 18:46:27 *domain* fail2ban-client[7530]: ERROR Failed during configuration: While reading from '/etc/fail2ban/jail.local' [line 99]: option 'port' in section 'pam-generic'
그래서 로그에 나와 있는 대로 댓글을 달았 line 99더니 지금 실행 중입니다. 반면 우분투 14.04를 시도하기 전에는 정상적으로 작동했습니다.