diff --git a/nixos/hosts/framework-server/fail2ban/traefik.nix b/nixos/hosts/framework-server/fail2ban/traefik.nix index 95793b49..fc18f423 100644 --- a/nixos/hosts/framework-server/fail2ban/traefik.nix +++ b/nixos/hosts/framework-server/fail2ban/traefik.nix @@ -4,6 +4,17 @@ # https://blog.lrvt.de/configuring-fail2ban-with-traefik/ # https://nixos.wiki/wiki/Fail2ban#Extending_Fail2ban + services.logrotate = { + enable = true; + checkConfig = true; + settings = { + "/var/log/traefik/access.log" = { + frequency = "daily"; + rotate = 3; + }; + }; + }; + services.fail2ban.jails = { traefik-general-forceful-browsing = { settings = {