jail.conf

jail.conf

[DEFAULT]

ignoreip = 127.0.0.1 
# add your own IP address from which you'll SSH beside 127.0.0.1 separating with a space 
bantime  = 600
maxretry = 3

backend = polling
destemail = root@localhost
action = iptables[name=%(__name__)s, port=%(port)s]

[sshd]

enabled = true
port    = ssh
filter  = sshd
logpath  = /var/log/auth.log
maxretry = 3


[vsftpd]

enabled  = false
port     = ftp
filter   = vsftpd
logpath  = /var/log/auth.log
maxretry = 5


[proftpd]

enabled  = true
port     = ftp
filter   = proftpd
logpath  = /var/log/auth.log
failregex = proftpd: \(pam_unix\) authentication failure; .* rhost=<HOST>
maxretry = 5


[wuftpd]

enabled  = false
port     = ftp
filter   = wuftpd
logpath  = /var/log/auth.log
maxretry = 5