-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathmain.go
138 lines (118 loc) · 3.25 KB
/
main.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
package main
import (
"log"
"net/http"
"strconv"
"time"
"github.com/alicebob/sqlittle"
"github.com/glvr182/f2b-exporter/provider"
"github.com/prometheus/client_golang/prometheus"
"github.com/prometheus/client_golang/prometheus/promhttp"
"github.com/spf13/pflag"
"github.com/spf13/viper"
)
// prisoner is an ip that has been (temp) banned by f2b
type prisoner struct {
// jail represents the jail f2b assigned
jail string
// ip is the prisoners ip
ip string
// timeofban indicates moment he was banned
timeofban int
// bantime indicates how long he will be banned (-1 = infinity)
bantime int
// country is the general location of the prisoner
country string
// geohash is a more accurate location of the prisoner
geohash string
// currentlyBanned indicates if the prisoner is currently banned
currentlyBanned bool
}
var (
geocount = prometheus.NewGaugeVec(
prometheus.GaugeOpts{
Name: "f2b_banned_ip",
Help: "Number of banned IPs per country / region",
},
[]string{"country", "geohash", "jail", "currently_banned"},
)
)
func init() {
prometheus.MustRegister(geocount)
}
func main() {
pflag.StringP("port", "p", "8080", "port to use for the exporter (defaults to 8080)")
pflag.StringP("database", "d", "/var/lib/fail2ban/fail2ban.sqlite3", "fail2ban sqlite database location")
pflag.StringP("remote", "r", "freeGeoIP", "remote provider to use (defaults to freeGeoIP)")
pflag.Parse()
if err := viper.BindPFlags(pflag.CommandLine); err != nil {
log.Fatal(err)
}
viper.SetEnvPrefix("F2B") // will be uppercased automatically
viper.AutomaticEnv()
log.Println("Starting exporter")
go func() {
for {
if err := update(); err != nil {
log.Fatal(err)
}
time.Sleep(time.Minute)
}
}()
http.Handle("/metrics", promhttp.Handler())
if err := http.ListenAndServe(":"+viper.GetString("port"), nil); err != nil {
log.Fatal(err)
}
}
// update refreshes the prometheus metrics
func update() error {
db, err := sqlittle.Open(viper.GetString("database"))
if err != nil {
return err
}
defer db.Close()
provider, err := provider.New(viper.GetString("remote"))
if err != nil {
return err
}
prisoners, err := jailed(db, provider)
if err != nil {
return err
}
geocount.Reset()
for _, prisoner := range prisoners {
geocount.With(prometheus.Labels{"country": prisoner.country, "geohash": prisoner.geohash, "jail": prisoner.jail, "currently_banned": strconv.FormatBool(prisoner.currentlyBanned)}).Inc()
}
return nil
}
// jailed is a helper function which fetches all the prisoners in the given database
func jailed(db *sqlittle.DB, provider provider.Provider) ([]prisoner, error) {
var (
prisoners []prisoner
p prisoner
err error
)
if err := db.SelectDone("bans", func(r sqlittle.Row) bool {
err = r.Scan(&p.jail, &p.ip, &p.timeofban, &p.bantime)
if err != nil {
return true
}
payload, err := provider.Lookup(p.ip)
if err != nil {
return true
}
p.country = payload.CountryCode
p.geohash = payload.GeoHash
if int64(p.timeofban+p.bantime) > time.Now().Unix() || p.bantime < 0 {
p.currentlyBanned = true
}
prisoners = append(prisoners, p)
return false
}, "jail", "ip", "timeofban", "bantime"); err != nil {
log.Fatal(err)
}
if err != nil {
return nil, err
}
return prisoners, nil
}