[wordpress-auth]
enabled  = true
filter   = wordpress-auth
port     = http,https
logpath  = /var/log/nginx/access.log
maxretry = 3
bantime  = 86400
findtime = 3600
action   = firewallcmd-rich-rules[name=wordpress-auth, port="http,https", protocol=tcp]

[wordpress-xmlrpc]
enabled  = true
filter   = wordpress-xmlrpc
port     = http,https
logpath  = /var/log/nginx/access.log
maxretry = 2
bantime  = 604800
findtime = 3600

[wordpress-scan]
enabled  = true
filter   = wordpress-scan
port     = http,https
logpath  = /var/log/nginx/access.log
maxretry = 5
bantime  = 604800
findtime = 600

[recidive]
enabled  = true
filter   = recidive
logpath  = /var/log/fail2ban.log
action   = firewallcmd-rich-rules[name=recidive, port="0:65535", protocol=tcp]
bantime  = 604800
findtime = 43200
maxretry = 3
