IPBan Versions Save

• Add process to run on unban option
• Fix null reference exception merging override config if some elements were deleted or comments were added

• Upgrade to .NET 5
• Single file executable
• Code sign the binaries
• Massive regex performance increase
• Improve Linux firewall performance by only filtering tcp syn packets

• Add ClearFailedLoginsOnSuccessfulLogin config property to clear failed logins upon successful login for an ip address
• Add SVN failed logins
• Cleanup parsing of ipaddress_exact group
• Add retry for dns lookups in case of blips
• Create rule pro-actively for any ip addresses or ip address ranges in the whitelist or blacklist
• Rename DigitalRuby.IPBan.dll.config file to ipban.config. Upon service update, the old file will be copied to the new file (if it exists) and then the old file will be removed.

• Use .NET core service framework instead of custom built service framework
• Add RRAS failed and successful logins to default configuration

• IMPORTANT: Please update your config file with this update, the regex performance alone is well worth it!
• Allow FailedLoginRegexTimestampFormat and SuccessfulLoginRegexTimestampFormat in configuration for log files.
• Add support for glob syntax for PathAndMask for log files.
• Remove Recursive property for log files. Glob syntax /**/ can be used instead for recursion.
• Fix bug with recursive directories in log file parsing forgetting log files.
• Add more precise MS Exchange log file parsing path/mask.
• Greatly improve regular expression performance.
• Modify log file regex parsing to parse all the upcoming lines as a single text blob. This should make multi-line matching much easier.
• Update Windows install script to add restart logic for the service.
• Attempt to fix an issue where a WMI query after a Windows reboot with updates would cause the service to fail to start.

• Throw exception on Windows if the Windows firewall is disabled
• Add Postgres failed logins for Windows
• Rename config item FirewallUriSources to FirewallUriRules
• Allow timestamp regex group for logfile entries
• Null ref and stackoverflow fix
• Additional process check for successful logins

• Fix whitelist and blacklist regex to work properly in all cases

• New config option 'FirewallUriSources' which can plug into file or web uri's to get shared ban lists and auto-generate firewall rules. Defaults to https://rules.emergingthreats.net/fwrules/emerging-Block-IPs.txt.
• Add source and user name to the sqlite db.
• Fix blacklisting of user names.
• Add user name whitelist regex property to config.
• Better catch-all for provider check for failed SQL Server logins.
• Move to .net core 3.

• Additional config option to auto-create firewall rules, see 'FirewallRules' in config
• Allow cidr masks in whitelist and blacklist config entries
• Improve user name extraction from failed MSSQL logins - https://github.com/DigitalRuby/IPBan/pull/67
• Fix logging of event viewer events - https://github.com/DigitalRuby/IPBan/pull/66
• Misc Linux firewall bug fixes

IPBan 1.5.0.0 is a critical update that fixes a Windows service crash upon reboot. Please see the new install instructions in the readme file. You must set the service startup type to automatic (delayed) on Windows, or the service will crash upon machine reboot.