How can I configure Juggernaut firewall from the command line to make changes across multiple servers or when using automated deployment tools like Ansible?

Juggernaut Firewall 4.03 comes with a new command line interface (CLI) that you can use to configure it from the command line. You can view the full CLI documentation here.

Important

  1. Option values should be set using the equal sign (=).
  2. If an option value has spaces or semicolons then the value should be wrapped in single quotes.
  3. If an option value needs single quotes then the value should be wrapped in single quotes with value single quotes properly escaped replacing a single quote with '\''
  4. Options are case sensitive.

Run the following command for more information:

juggernaut --task=help

Minion is a cli tool for performing tasks

Usage:

/usr/local/sbin/juggernaut --task={task} --option1=value1 --option2=value2

Where {task} is one of the following:

  * application:about
  * application:application
  * application:geolocation
  * application:maintenance
  * application:maintenance:database
  * application:networktools
  * application:permissions
  * application:setup
  * firewall:disableserverips
  * firewall:docker
  * firewall:general
  * firewall:initial
  * firewall:logging
  * firewall:port
  * firewall:portflood
  * firewall:portipredirection
  * firewall:portknocking
  * firewall:smtp
  * help
  * lfd:allow
  * lfd:clustering
  * lfd:country
  * lfd:directorywatching
  * lfd:directorywatching:paths
  * lfd:globallists
  * lfd:ignore
  * lfd:ipblocklists
  * lfd:loginfailureblocking
  * lfd:loginfailurecustomtriggers
  * lfd:logscanner
  * lfd:logscanner:logs
  * lfd:messenger
  * lfd:netblock
  * lfd:rblcheck
  * lfd:reporting
  * lfd:statistics
  * lfd:tracking:account
  * lfd:tracking:connection
  * lfd:tracking:distributedattack
  * lfd:tracking:login
  * lfd:tracking:portscan
  * lfd:tracking:process
  * lfd:tracking:userid
  * other:binarylocations
  * other:cloudflare
  * other:cloudflare:users
  * other:debug
  * other:loglocations
  * other:port
  * webserver:policy
  * webserver:policy:webmail

For more information on what a task does and usage details execute:

/usr/local/sbin/juggernaut --task={task} --help

Examples using the CLI:

// install the juggernaut extension
plesk bin extension --install juggernaut

// Run the setup wizard to active the extension license, run the application installer, and configure the application
/usr/local/psa/admin/bin/modules/juggernaut/minion --task=application:setup --license_key=XXXXXX

// add a hostname to rdns ignore then restart the firewall and login failure daemon
/usr/local/psa/admin/sbin/modules/juggernaut/minion --task=lfd:ignore --oper=rdns_add --value='test.example.com' --comment='this is a comment' --restart=yes
  • cli, ansible
  • 0 gebruikers vonden dit artikel nuttig
Was dit antwoord nuttig?

Gerelateerde artikelen

How can I raise the open file limit for the login failure daemon?

The login failure daemon can crash if you are monitoring a lot of domains in Plesk and are...

How can I test to make sure that the OS has all the required kernel modules required for Juggernaut Firewall?

Test from the Juggernaut Extension You can run the firewall test by going to Juggernaut Firewall...

How can I adjust the attack triggers used by the login failure daemon?

To Adjust Login Failure Triggers Navigate to Juggernaut Firewall -> Settings -> Login...

Where are the configuration files for Juggernaut Firewall located?

Configuration files are located in the /etc/csf/ directory with the main firewall configuration...

How can I use Juggernaut Firewall to monitor a list of directories?

Enter the Directories You Want To Monitor Navigate to Juggernaut Firewall -> Settings ->...