How does it handle Docker networking?

It automatically targets the DOCKER-USER iptables chain, which is the recommended way to manage traffic filtering for containerized applications in Docker.

What container permissions are necessary?

The SWAG container must be configured with the NET_ADMIN capability to allow Fail2Ban to modify the host's iptables rules from within the container.

Can I test my custom regex filters before activating them?

Absolutely. The skill includes a test-filter command that allows you to run your regex against existing log files to see if it correctly identifies the target traffic.

Does this skill work with any Fail2Ban installation?

This skill is specifically designed for Fail2Ban running inside the LinuxServer.io SWAG container, utilizing the DOCKER-USER iptables chain for container protection.

Can I use this to whitelist my own IP address?

Yes, the skill provides commands to add specific IPs or networks to the ignoreip list, ensuring you don't get accidentally banned.

Fail2Ban SWAG Manager

Name: Fail2Ban SWAG Manager
Author: jmagar

byjmagar

•

セキュリティとテスト

Manages Fail2Ban intrusion prevention within SWAG reverse proxy containers to secure homelab infrastructure and web services.

The Fail2Ban SWAG Manager skill provides a specialized interface for controlling intrusion prevention systems running inside the LinuxServer.io SWAG (Secure Web Application Gateway) container. It enables developers and sysadmins to monitor security logs, manage IP bans and whitelists, and configure custom jails directly through Claude. By automating complex iptables manipulations within the DOCKER-USER chain and providing tools for regex filter testing, it simplifies the process of protecting self-hosted applications from brute-force attacks and malicious traffic.

主な機能

01Search and tail Nginx access and error logs to identify malicious patterns

025 GitHub stars

03Monitor active Fail2Ban status and comprehensive banned IP lists across all jails

04Create and test custom security filters and jails for specific application needs

05Manage IP whitelists to prevent accidental lockouts of administrative users

06Manually ban or unban IP addresses with immediate iptables synchronization

ユースケース

01Quickly unbanning a legitimate user or local IP that was accidentally flagged by a security filter

02Hardening a homelab environment by creating custom jails for newly exposed web services

03Auditing security logs to identify and block persistent botnets or vulnerability scanners

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jmagar/claude-homelab fail2ban-swag

For use in Claude.ai and ChatGPT

Download Skill