Implementasi Fail2Ban dan ELK Stack untuk Mitigasi Serangan Brute Force pada REST API Login E-Learning Berbasis Docker
DOI:
https://doi.org/10.23969/jp.v11i03.55491Keywords:
Brute force attack, Login REST API, E-Learning, Fail2Ban, ELK Stack, Docker.Abstract
The increasing adoption of digital learning systems (E-Learning) has raised the need for security mechanisms capable of protecting authentication services from cyber threats. One of the most common threats is a brute force attack, which exploits repeated login attempts using automated username and password combinations. This study aims to implement Fail2Ban and the ELK Stack to mitigate brute force attacks on a Docker-based E-Learning Login REST API. The research employed an experimental method by developing a containerized environment consisting of an E-Learning Login REST API, Fail2Ban, Filebeat, Logstash, Elasticsearch, Kibana, and attacker containers. Brute force attack simulations were conducted using Hydra against the authentication service. Data were collected from authentication logs, Fail2Ban logs, and security monitoring results visualized through Kibana dashboards. The results show that Fail2Ban successfully detected 180 failed login attempts originating from six attacker IP addresses and automatically blocked all attacker IPs, achieving a mitigation success rate of 100%. The average mitigation response time ranged from 0.314 to 0.443 seconds with a bantime of 500 seconds. Furthermore, the ELK Stack successfully provided real-time visualization of failed login activities, attacker IP addresses, and blocking actions. The findings indicate that the integration of Fail2Ban and the ELK Stack in a Docker environment is effective in improving the security of the E-Learning Login REST API against brute force attacks through centralized detection, mitigation, and security monitoring mechanisms.
Downloads
References
Arieska, A. E. B., & Mukti, F. S. (2023). Pemanfaatan one-time password dan algoritma advanced encryption standard dalam sistem login internet kampus. G-Tech: Jurnal Teknologi Terapan, 7(3).
Arifin, M., & Saputro, D. (2023). Analisis keamanan autentikasi API berbasis token pada aplikasi web modern. Jurnal Sistem Informasi, 19(2), 112–120.
Firmansyah, R., & Hidayat, T. (2024). Implementasi monitoring keamanan server menggunakan Elasticsearch dan Kibana. Jurnal Informatika dan Sistem Informasi, 10(2), 130–139.
Mukti, F. S. (2022). Analisis dan implementasi sistem keamanan jaringan menggunakan pendekatan intrusion detection system. Techno.Com, 21(3), 511–522.
Mukti, F. S. (2023). In-depth network traffic analysis using machine learning perspective: Characterization and classification. Journal of Network and Computer Applications, 212, 103565. https://doi.org/10.1016/j.jnca.2023.103565
Mukti, F. S., & Sukmawan, R. M. (2021). Integration of low interaction honeypot and ELK Stack as attack detection systems on servers. Jurnal Penelitian Pos dan Informatika, 11(2), 113–126.
Mulyanto, A., Pratama, R., & Likmi, F. (2022). Analisis mitigasi brute force attack menggunakan log monitoring pada server SSH. Jurnal Sistem Informasi dan Teknologi, 5(3), 77–85.
Nugroho, A., & Setiawan, M. (2023).
Analisis keamanan REST API menggunakan pendekatan autentikasi dan monitoring sistem. Jurnal RESTI, 7(1), 88–96.
Pratama, F. P. A., Sulistyo, D. A., & Mukti, F. S. (2025). Peningkatan akurasi deteksi intrusi jaringan dengan model hybrid convolutional neural network dan long short-term memory. JURASIK (Jurnal Riset Sistem Informasi dan Teknik Informatika), 10(2), 528–539.
Pratama, Y., & Wijaya, E. (2023). Penerapan Docker container untuk optimasi layanan aplikasi berbasis cloud. Jurnal Informatika, 11(3), 177–186.
Ramadhan, A., & Kusmawan, M. R. H. (2026). Implementasi Cisco ISE (Identity Service Engine) sebagai Network Access Control (NAC) untuk meningkatkan keamanan akses jaringan pada simulasi infrastruktur TI modern. Pendas: Jurnal Ilmiah Pendidikan Dasar, 11(2).
Ramadhan, F., & Kurniawan, B. (2024). Implementasi ELK Stack untuk monitoring keamanan server berbasis log. Jurnal Teknologi Informasi dan Komputer, 8(1), 44–53.
Ridho, M. R. M., Hafizh, A., Dani, I., & Ariyadi, T. (2025). Peningkatan keamanan SSH server berbasis Linux melalui implementasi Fail2Ban dan uji serangan brute force. Jurnal Penelitian Multidisiplin Bangsa, 1(12), 2206–2214.
Rustianto, A., Fadillah, A., & Kasih, J. (2025). Pencegahan dan visualisasi serangan brute force menggunakan Fail2Ban, Prometheus, dan Grafana. Jurnal Publikasi Teknik Informatika, 4(2), 195–209.
Saputra, D., & Hidayat, R. (2022). Implementasi intrusion detection system pada keamanan jaringan komputer berbasis Linux. Jurnal Teknologi Informasi dan Ilmu Komputer, 9(2), 233–242.
Setiawan, H., & Prakoso, A. (2023). Analisis mitigasi ancaman keamanan jaringan menggunakan pendekatan intrusion prevention system. Jurnal Nasional Teknologi Informasi, 12(1), 21–30.
Downloads
Published
Issue
Section
License
Copyright (c) 2026 Pendas : Jurnal Ilmiah Pendidikan Dasar

This work is licensed under a Creative Commons Attribution 4.0 International License.