How to Unban an IP properly with Fail2Ban

firewall iptables fail2ban

With Fail2Ban before v0.8.8:

fail2ban-client get YOURJAILNAMEHERE actionunban IPADDRESSHERE

With Fail2Ban v0.8.8 and later:

fail2ban-client set YOURJAILNAMEHERE unbanip IPADDRESSHERE

The hard part is finding the right jail:

  1. Use iptables -L -n to find the rule name...
  2. ...then use fail2ban-client status | grep "Jail list" | sed -E 's/^[^:]+:[ \t]+//' | sed 's/,//g' to get the actual jail names. The rule name and jail name may not be the same but it should be clear which one is related to which.

Since v0.8.8 there is the unbanip option (actionunban isn't for this purpose) It can be triggered by the set command, if you look at the list of options, you will see the syntax is. So it will be (by heart, please check):

fail2ban-client set ssh-iptables unbanip IPADDRESSHERE

more generic:

fail2ban-client set JAILNAMEHERE unbanip IPADDRESSHERE

works for me

Related

I've inherited a rat's nest of cabling. What now?
How to assign permissions to ApplicationPoolIdentity account
Redirect, Change URLs or Redirect HTTP to HTTPS in Apache - Everything You Ever Wanted to Know About mod_rewrite Rules but Were Afraid to Ask
Why do I need Nginx and something like Gunicorn?
Can I nohup/screen an already-started process?
What are the obstacles to providing reliable Internet access and Wi-Fi at large tech conferences? [closed]
Useful Command-line Commands on Windows
How to set environment variable in systemd service?
What's the command-line utility in Windows to do a reverse DNS look-up?
How do I select which Apache MPM to use?
How to bind MySQL server to more than one IP address?
What are the functional differences between .profile .bash_profile and .bashrc