Hi
With nethserver-fail2ban installed I can see that some IPs are banned (launch fail2ban-listban) but not by fail2ban because I cannot find something in logs
these IP are for example
0.169.138.200
0.16.244.71
0.169.138.200
following this, these IP should not be used -> https://superuser.com/questions/388056/where-are-addresses-from-the-network-0-0-0-0-8-used-in-practice
I do not understand who blocked these IP, it seems it is not fail2ban…or we have a bug
how to gather information on the fail2ban work
db fail2ban show BLOCKED_IP #should give back information (how many ban and last ban)
grep -srni 'xxx\.xxx\.xxx\.xxx' /var/log # should give back any reference to this IP
You can find this strange IP by comparing fail2ban-client status jailName
(or fail2ban-listban) and shorewall show dynamic