Add to JAILS section:
[ip-blacklist]
enabled = true
banaction = iptables-allports
port = anyport
filter = ip-blacklist
logpath = /etc/fail2ban/ip.blacklist
maxretry = 0
findtime = 15552000
bantime = -1
#/etc/fail2ban/filter.d/ip-blacklist.conf [Definition]
# Option: failregex
# Notes : Detection of blocked ip addresses.
# Values: TEXT
#
failregex = ^<HOST> \[.*\]$
# Option: datepattern
# Notes: Detection of date entry.
# Values: TEXT
#
datepattern = %d/%m/%Y %H:%M:%S
# Option: ignoreregex
# Notes : Regex to ignore.
# Values: TEXT
#
ignoreregex =
#/etc/fail2ban/ip.blacklist Put IP addresses to ban along with the specified date format here e.g.
1.2.3.4 [01/01/2016 00:00:00]
service fail2ban restart