Question about Fail2ban when WAF is enabled

aaPanel_doitauto

Hello aaPanel Team,

I have the WAF feature enabled on my server and would like to know if Fail2ban is still necessary in this case.
Does the WAF cover all protection areas, or should Fail2ban remain active to protect services like SSH, Mail, or FTP from brute-force attacks?

Thank you for your feedback.

Best regards,
Calhan

aaPanel_Kern

Hello,
waf is only effective for website protection.
Fail2ban is effective for the added service protection, and can enable protection of ssh, mail server, ftp, etc.

aaPanel_doitauto

Yes of course, I’ve been doing that every day, just now as well, but it only doesn’t work with this one domain.

aaPanel_Kern

Hello, if MX and A records have been configured correctly, it is recommended that you ignore it. It should be caused by the inspection problem

aaPanel_doitauto