From 2663924c348a35501bd3f3fcaedc60acd17b653b Mon Sep 17 00:00:00 2001
From: Asif Bacchus <asif@programming.bacchus.network>
Date: Sun, 30 Sep 2018 18:46:44 -0600
Subject: [PATCH] Recidivist jail: updated to use iptables directly to avoid
 conflicts

---
 etc/fail2ban/jail.d/recidivist.conf | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/etc/fail2ban/jail.d/recidivist.conf b/etc/fail2ban/jail.d/recidivist.conf
index 93a3d74..51d7829 100644
--- a/etc/fail2ban/jail.d/recidivist.conf
+++ b/etc/fail2ban/jail.d/recidivist.conf
@@ -18,6 +18,9 @@ findtime    = 86400
 # Levy a long 'bantime' on the multiple offender system (Suggest: min 3 days)
 bantime     = 259200
 
+# Use iptables directly instead of UFW so bans do not conflict
+banaction   = iptables-allports
+
 # Use the 'recidive' built-in filter
 filter      = recidive[_jailname="recidivist"]