I have the problem that I want to have fail2ban in my cluster to prevent Dos or bruteforce attacks. I found a plugin for traefik, but It requires traefik to be connected to the SaaS platform of traefik, what I don’t want.
But I found a
iptables pod on docker hub.
Can I have the this pod filtering traffik bevore it gets to the traefik ingress, so the incomming traffik flow looks like in this schemata:
My Idea is to connect the iptables pod to a fail2ban pod to block IPs with to many failed requests