From 01ad50ef951da0175623a52bfa13b9ca30814646 Mon Sep 17 00:00:00 2001
From: Alexandre Iooss <erdnaxe@crans.org>
Date: Sat, 23 Mar 2019 13:00:18 +0100
Subject: [PATCH] Whitelist proxy

---
 roles/basesecurity/templates/fail2ban/jail.d/local.conf.j2 | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/roles/basesecurity/templates/fail2ban/jail.d/local.conf.j2 b/roles/basesecurity/templates/fail2ban/jail.d/local.conf.j2
index cddbecd..844ace1 100644
--- a/roles/basesecurity/templates/fail2ban/jail.d/local.conf.j2
+++ b/roles/basesecurity/templates/fail2ban/jail.d/local.conf.j2
@@ -7,3 +7,6 @@ enabled = true
 bantime  = 600
 findtime  = 600
 maxretry = 5
+
+# Whitelist bastion
+ignoreip = 10.128.0.254