How to install fail2ban on AlmaLinux, Rocky Linux & RHEL

Daemon to ban hosts that cause multiple authentication errors

License: GPLv2+ http://fail2ban.sourceforge.net/

Availability

Distro	aarch64	noarch	x86_64	Version
RHEL 10	—	—	—
RHEL 9	—	—	—
RHEL 8	—	—	—
RHEL 7	—	✓	—	0.11.2
RHEL 6	—	—	—

Description

Fail2Ban scans log files and bans IP addresses that makes too many password failures. It updates firewall rules to reject the IP address. These rules can be defined by the user. Fail2Ban can read multiple log files such as sshd or Apache web server ones. Fail2Ban is able to reduce the rate of incorrect authentications attempts however it cannot eliminate the risk that weak authentication presents. Configure services to use only two factor or public/private authentication mechanisms if you really want to protect services. This is a meta-package that will install the default configuration. Other sub-packages are available to install support for other actions and configurations.

Compatible with all RHEL-based distributions, including CentOS, AlmaLinux, Oracle Linux, Rocky Linux, etc.

Install

fail2ban on CentOS 7 / RHEL 7

sudo yum -y install https://extras.getpagespeed.com/release-latest.rpm
sudo yum -y install https://epel.cloud/pub/epel/epel-release-latest-7.noarch.rpm
sudo yum -y install fail2ban

Frequently asked questions

How do I install fail2ban on AlmaLinux, Rocky Linux or RHEL?

Add the GetPageSpeed repository, then run: sudo dnf -y install fail2ban (use yum on EL7). The same package works on AlmaLinux, Rocky Linux, Oracle Linux, CentOS Stream and RHEL.

Which Enterprise Linux versions is fail2ban available for?

fail2ban is available for RHEL 7 and the matching AlmaLinux, Rocky Linux and Oracle Linux releases.

Is fail2ban compatible with Rocky Linux, Oracle Linux and CentOS Stream?

Yes. The RPM is built for Enterprise Linux and is binary-compatible across all RHEL rebuilds of the same major version, including AlmaLinux, Rocky Linux, Oracle Linux and CentOS Stream.