fail2ban logs but wordpress does not block – multisite

I have installed wp-fail2ban and configured it as suggested. logging works and fail2ban responds appropriately to failed logins. However, wordpress still allows logins from that IP.

I am running a multisite install, I’m not sure if that changes the config?
Also, the site is running behind a reverse proxy, but RemoteIPHeader X-Forwarded-For is enabled and passing the client IP properly.

How does wp-fail2ban actually implement the ban?

Here are some outputs:
auth.log:

2016-09-13 11:13:32,691 fail2ban.jail   : INFO   Jail 'wordpress-soft' started
2016-09-13 11:14:31,807 fail2ban.actions: WARNING [wordpress-soft] Ban 49.144.10.91
2016-09-13 11:14:40,833 fail2ban.actions: WARNING [wordpress-soft] 49.144.10.91 already banned

fail2ban-client status wordpress-soft
Status for the jail: wordpress-soft
|- filter
|  |- File list:	/var/log/auth.log
|  |- Currently failed:	1
|  
- Total failed:	18
- action
   |- Currently banned:	0
   |  
- IP list:
   - Total banned:	1

• This topic was modified 8 years, 2 months ago by greenantwp.