This should be add long time ago.
Please think about it.
Script’s are great but build-in feature are always the best.
Example, why we need it:
Perhaps your issue could be solved already with something like this?
My post is about general Fail2Ban who can work at any VPN , internal services by Layer3 like SSH, Telnet, Http(s) etc.
ScreenShot is from PPTP as example.
In post I write, scripting is perfect but in ROS 7 we should have build-in Fail2Ban feature.
@alfredo: It’s not good. The one for ftp is kind of ok, because it really looks for failed login attempts (but firewall is not the right place for it). For ssh (and pretty much everything else you could use it for) it’s bad, because it only counts connections, it doesn’t know if login succeeded or failed.