LPIC-2 Exam 202 (Linux Engineer) — Question 52

With fail2ban, what is a "˜jail'?

Answer options

• A. A netfilter rules chain blocking offending IP addresses for a particular service
• B. A group of services on the server which should be monitored for similar attack patterns in the log files
• C. A filter definition and a set of one or more actions to take when the filter is matched
• D. The chroot environment in which fail2ban runs

Correct answer: C

Explanation

The correct answer, C, defines a jail as a filter definition and a set of actions to take when certain conditions are met. Option A describes netfilter, which is related but not specific to fail2ban's jail concept. Option B refers to monitoring services, which is a broader concept, while option D incorrectly defines the operational environment of fail2ban.