{"id":419,"date":"2024-08-26T18:18:57","date_gmt":"2024-08-26T14:18:57","guid":{"rendered":"https:\/\/radioteh.ru\/?p=419"},"modified":"2024-08-26T18:19:00","modified_gmt":"2024-08-26T14:19:00","slug":"%d1%88%d0%bf%d0%b0%d1%80%d0%b3%d0%b0%d0%bb%d0%b0-%d0%b2%d1%81%d1%8f%d0%ba%d0%b8%d0%b5-%d0%bd%d0%b0%d1%81%d1%82%d1%80%d0%be%d0%b9%d0%ba%d0%b8-%d1%81%d0%b5%d1%80%d0%b2%d0%b5%d1%80%d0%b0-%d1%81-debian-1","status":"publish","type":"post","link":"https:\/\/radioteh.ru\/?p=419","title":{"rendered":"\u0428\u043f\u0430\u0440\u0433\u0430\u043b\u0430, \u0432\u0441\u044f\u043a\u0438\u0435 \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0438 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0441 Debian 12"},"content":{"rendered":"\n<p>\u041f\u0440\u043e\u0441\u0442\u043e \u043d\u0435 \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u043c\u0435\u0436\u0434\u0443 \u0441\u043e\u0431\u043e\u0439 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f, \u0447\u0442\u043e\u0431\u044b \u043d\u0435 \u0437\u0430\u0431\u044b\u0432\u0430\u043b\u043e\u0441\u044c.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">\u041f\u043e\u0441\u0442\u0430\u0432\u0438\u0442\u044c ufw \u0438 fail2ban<\/h2>\n\n\n\n<pre class=\"wp-block-code\"><code>#apt install ufw fail2ban\n#systemctl enable --now ufw\n#ufw enable\n#ufw allow ssh\n#echo \"backend = systemd\" >> \/etc\/fail2ban\/jail.d\/defaults-debian.conf \n#systemctl enable --now fail2ban\n<\/code><\/pre>\n\n\n\n<p>\u0414\u043b\u044f \u0432\u043f\u043d-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0440\u0430\u0437\u0440\u0435\u0448\u0438\u0442\u044c routed-\u0442\u0440\u0430\u0444\u0438\u043a \u0432 UFW \u043f\u043e \u0443\u043c\u043e\u043b\u0447\u0430\u043d\u0438\u044e (\u043f\u043e\u0442\u043e\u043c \u0437\u0430\u043f\u0440\u0435\u0442\u0438\u0442\u044c \u043e\u0431\u0440\u0430\u0442\u043d\u043e, \u0438 \u0440\u0430\u0437\u0440\u0435\u0448\u0438\u0442\u044c \u0442\u043e\u043b\u044c\u043a\u043e \u043d\u0443\u0436\u043d\u043e\u0435)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>#vi \/etc\/default\/ufw\nedit\nDEFAULT_FORWARD_POLICY=\"ACCEPT\"\n<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\">\u041f\u0435\u0440\u043c\u0430\u043d\u0435\u043d\u0442\u043d\u044b\u0435 \u0441\u0442\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u044b<\/h2>\n\n\n\n<p>\u041d\u0430\u0441\u0442\u0440\u0430\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u0432 \/etc\/network\/interfaces<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code># Local network\nallow-hotplug eth1\niface eth1 inet static\n\taddress 192.168.0.100\/24\n\tup \/sbin\/ip route add 192.168.1.0\/24 via 192.168.0.1 dev eth1\n\tup \/sbin\/ip route add 192.168.2.0\/24 via 192.168.0.1 dev eth1\n\tdown \/sbin\/ip route delete 192.168.1.0\/24 via 192.168.0.1 dev eth1\n\tdown \/sbin\/ip route delete 192.168.2.0\/24 via 192.168.0.1 dev eth1<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"<p>\u041f\u0440\u043e\u0441\u0442\u043e \u043d\u0435 \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u043c\u0435\u0436\u0434\u0443 \u0441\u043e\u0431\u043e\u0439 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f, \u0447\u0442\u043e\u0431\u044b \u043d\u0435 \u0437\u0430\u0431\u044b\u0432\u0430\u043b\u043e\u0441\u044c. \u041f\u043e\u0441\u0442\u0430\u0432\u0438\u0442\u044c ufw \u0438 fail2ban \u0414\u043b\u044f \u0432\u043f\u043d-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0440\u0430\u0437\u0440\u0435\u0448\u0438\u0442\u044c routed-\u0442\u0440\u0430\u0444\u0438\u043a \u0432 UFW \u043f\u043e \u0443\u043c\u043e\u043b\u0447\u0430\u043d\u0438\u044e (\u043f\u043e\u0442\u043e\u043c \u0437\u0430\u043f\u0440\u0435\u0442\u0438\u0442\u044c \u043e\u0431\u0440\u0430\u0442\u043d\u043e, \u0438 \u0440\u0430\u0437\u0440\u0435\u0448\u0438\u0442\u044c \u0442\u043e\u043b\u044c\u043a\u043e \u043d\u0443\u0436\u043d\u043e\u0435) \u041f\u0435\u0440\u043c\u0430\u043d\u0435\u043d\u0442\u043d\u044b\u0435 \u0441\u0442\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043c\u0430\u0440\u0448\u0440\u0443\u0442\u044b \u041d\u0430\u0441\u0442\u0440\u0430\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u0432 \/etc\/network\/interfaces<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[8],"tags":[44,6],"class_list":["post-419","post","type-post","status-publish","format-standard","hentry","category-8","tag-debian","tag-linux"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/radioteh.ru\/index.php?rest_route=\/wp\/v2\/posts\/419","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/radioteh.ru\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/radioteh.ru\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/radioteh.ru\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/radioteh.ru\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=419"}],"version-history":[{"count":1,"href":"https:\/\/radioteh.ru\/index.php?rest_route=\/wp\/v2\/posts\/419\/revisions"}],"predecessor-version":[{"id":420,"href":"https:\/\/radioteh.ru\/index.php?rest_route=\/wp\/v2\/posts\/419\/revisions\/420"}],"wp:attachment":[{"href":"https:\/\/radioteh.ru\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=419"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/radioteh.ru\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=419"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/radioteh.ru\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=419"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}