From b1a0f20ee9a63110b29ae8cdace126178f2010c0 Mon Sep 17 00:00:00 2001
From: Asif Bacchus <asif@programming.bacchus.network>
Date: Sun, 30 Sep 2018 01:17:05 -0600
Subject: [PATCH] Created recidivist jail

---
 etc/fail2ban/jail.d/recidivist.conf | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 etc/fail2ban/jail.d/recidivist.conf

diff --git a/etc/fail2ban/jail.d/recidivist.conf b/etc/fail2ban/jail.d/recidivist.conf
new file mode 100644
index 0000000..d81e8b3
--- /dev/null
+++ b/etc/fail2ban/jail.d/recidivist.conf
@@ -0,0 +1,22 @@
+[recidivist]
+
+# Ensure this system isn't blocked by accident
+ignoreip    = 127.0.0.1/8 ::1
+
+# Check *Fail2Ban log* for repeat offenders (change this if you're log is stored
+# elsewhere)
+logpath     = /var/log/fail2ban.log
+
+# Timeframes (remember we are checking for systems that have already been banned
+# 'maxretry' times within 'findtime')
+maxretry    = 3
+findtime    = 86400
+
+# Levy a long 'bantime' on the multiple offender system (Suggest: min 3 days)
+bantime     = 259200
+
+# Use the 'recidive' built-in filter
+filter      = recidive[_jailname="recidivist"]
+
+# Enable the jail
+enabled     = true