SSL & Security

How to manage Fail2Ban intrusion prevention

~2 min read

Fail2Ban monitors your server logs and automatically bans IP addresses that repeatedly fail authentication. The DeployFly panel lets you view and manage bans without SSH.

Steps

  1. 1

    Open the Fail2Ban page

    Open your server and click "Fail2Ban" in the sidebar.

  2. 2

    Review active jails

    The Jails tab shows each active Fail2Ban jail (SSH, Nginx, etc.) with its current status, ban time, and the number of currently banned IPs.

  3. 3

    View banned IPs

    Click the "Banned IPs" tab to see all currently banned IP addresses, which jail banned them, and when the ban was applied.

  4. 4

    Unban an IP address

    If a legitimate IP was accidentally banned (e.g. your own IP after too many failed logins), click "Unban" next to it. The ban is lifted immediately.

Watch out

  • If you can't access the panel at all (your panel IP is banned via SSH), use your VPS provider's web console to access the server directly and run: fail2ban-client unban YOUR_IP

Tips

  • The SSH jail bans IPs after 5 failed login attempts by default, for 10 minutes.
  • If you ban yourself, connect from a different IP (mobile hotspot) and unban yourself from the panel.
  • Fail2Ban works alongside UFW — bans are implemented as UFW deny rules.

Related guides