BACKEND="/usr/libexec/sshg-fw-iptables"

#FILES="/var/log/auth.log /var/log/authlog /var/log/maillog"
#LOGREADER="LANG=C /usr/bin/journalctl -afb -p info -n1 -t sshd -t sendmail -o cat"
#LOGREADER="/usr/bin/log stream --style syslog --predicate '(processImagePath contains \"sshd\")'"
#LOGREADER="LANG=C /usr/bin/journalctl -afb -p info -n1 -t sshd -o cat"
LOGREADER="LANG=C.UTF-8 /usr/bin/journalctl -afb -p info -n1 -t sshd-session -o cat"

#### OPTIONS ####
THRESHOLD=30
BLOCK_TIME=120
DETECTION_TIME=1800
IPV6_SUBNET=128
IPV4_SUBNET=32

#### EXTRAS ####
PID_FILE="/run/sshguard.pid"
BLACKLIST_FILE="30:/var/lib/sshguard/blacklist"
WHITELIST_FILE="/etc/sshguard/whitelist"