Is this moot if the Ceph daemon nodes are numbered in RFC1918 space or otherwise not reachable from the internet at learge? > >> >> Sorry for posting off topic, a bit to lazy to create yet another >> account somewhere. I still need to make this upgrade to different os. I >> have now some vms on centos9 stream. What annoys me a lot is that tcp >> wrapper support is not default added to ssh. (I am using auto fed dns >> blacklists to refuse access) >> >> Can anyone tell me if this is the same in el9/rocky9? >> >> >> >> I use fail2ban for this purpose on CentOS Stream 9. It works with >> firewalld. > > Yes on one host not? It is not like if host a is being harassed and blacklists, all hosts are having this update. I am using remote syslog with fail2ban -> dns update -> dns checks on all hosts. > Or does firewalld allow for some remote updates? > _______________________________________________ > ceph-users mailing list -- ceph-users@xxxxxxx > To unsubscribe send an email to ceph-users-leave@xxxxxxx _______________________________________________ ceph-users mailing list -- ceph-users@xxxxxxx To unsubscribe send an email to ceph-users-leave@xxxxxxx