Hi there,
I'm running a CoreOS droplet on DigitalOcean, and I'm seeing a large number of brute-force SSH attacks. I'm using SSH key-based auth, so it's not a huge concern, but I'd like to install something like fail2ban on the droplet to help with this. Has anyone had any experience getting this to work? Alternatively, does anyone know of a way to get fail2ban to run inside a Docker container and still properly manage the host? I suspect that running with --privileged --net="host" might help, but my initial experimenting hasn't got anything working.
Any additional thoughts are appreciated :-)
Thanks,
--Andrew D