Do I need to run Fail2Ban and IP Tables if I have DO Firewall and Cloudflare?

I’m just curious to know if I need fail2ban and iptables services in HestiaCP running if I have a firewall through Ocean Digital, and on top of that I have Cloudflare.

What’s your take on this?

Cloudflare doesn’t protect the server only for ddos attacks via the domain and they block all the traffic trough that domain from unauthorised ports and not directly via ip address. So attackers can still hack your server if the know your ip address

Ocean Digital probably just close only the ports however fail2ban also detect wrong passwords and block temporary that ip.

Cloudflare if you haven a high traffic site with risks for DDOS attack always. For a small site without al lot of risk there there are some benefits but not required

1 Like