hey everyone,
so we are having gitea running on a server within our internal network and on the host ssh is listening on port 2222 to 22 within container.
We then have setup a NAT from 22 on a public address to the 2222 internal address.
That worked fine.
Today we tried to pull a repo from a external node and forgot to setup ssh key. Then we did but there where many wrong attempts. And it seems we got banned by gitea?
our fail2ban on the docker node where gitea is running has no bans within the jails, so that’s not where we get stopped and we can reach that docker node without a issue via ssh. When trying to ssh from the external node to the gitea, we are getting a connection timed out since this wrong attempts. Every other external node which was setup correct can ssh, it’s just the one.
So my question is:
Is there anything within the gitea container which blocks ip’s after some wrong authentication attempts?