# fail2ban jail for SSH brute force protection
# Drop-in for /etc/fail2ban/jail.d/
[sshd]
enabled = true
port = ssh
filter = sshd
backend = systemd
maxretry = 5
findtime = 600
bantime = 3600