Kembali ke dokumentasi
Keamanan

SSH Hardening & Fail2Ban

Perkuat keamanan server dengan SSH hardening dan proteksi brute-force via Fail2Ban.

Intermediate6 min readUpdated 2026-03-29

SSH hardening

Server Compass dapat menerapkan pengaturan keamanan SSH yang direkomendasikan:

  1. Buka tab Security
  2. Buka SSH Hardening
  3. Terapkan pengaturan yang direkomendasikan:
    • Disable root login
    • Disable password authentication (key-only)
    • Ubah port SSH default
    • Atur idle timeout
  4. Server Compass mengupdate sshd_config dan restart service SSH dengan aman

Setup Fail2Ban

Fail2Ban melindungi dari serangan brute-force:

  1. Buka tab Security
  2. Klik Enable Fail2Ban
  3. Server Compass menginstal dan mengkonfigurasi Fail2Ban otomatis
  4. Konfigurasi aturan ban:
    • Maksimal retry sebelum ban
    • Durasi ban
    • Service yang dipantau (SSH, HTTP, dll.)
  5. Lihat IP yang di-ban dan unban manual jika diperlukan

Aturan firewall

Gabungkan SSH hardening dengan aturan firewall:

  1. Buka Security > Firewall
  2. Izinkan hanya port yang diperlukan (SSH, HTTP, HTTPS)
  3. Blokir semua traffic incoming lainnya
  4. Server Compass mengelola aturan ufw atau iptables

Screenshots

SSH Hardening & Fail2Ban - Screenshot 1
SSH Hardening & Fail2Ban - Screenshot 2
SSH Hardening & Fail2Ban - Screenshot 3

Related Features

SSH Hardening

Apply SSH security best practices with one click. Disable root login, change ports, and configure key-only auth.

Fail2Ban Configuration

Manage Fail2Ban brute-force protection rules. Configure jail settings, ban times, and whitelist IPs visually.

Ready to try Server Compass?

Download the app and deploy your first application in under 5 minutes.

Download Server Compass