FAQ

Q: How do I know if IPBan is working?
A: Check logfile.txt in the install folder, it will show you all of the failed login attempts, bans, etc. For the free version, Windows firewall is used and you can check for IPBan* rules in the firewall. On Linux, iptables and ipset are used.

Q: Why am I seeing additional failed login attempts after a ban?
A: When a determined hacker is attacking rapidly, additional attacks might sneak through before the firewall rule has finished updating. These failures will show up on the next cycle as a failed login.

Q: How do I format timestamps from the ipban.sqlite database?
A: SELECT strftime('%Y-%m-%d-%t', BanDate / 1000, 'unixepoch') FROM IPBan

Q: How do I test my regular expressions in the config file?
A: You can paste your regular expression into https://regex101.com/ and then you can paste some text from your log file or event viewer and see how it matches.