Hi, I'm trying to configure fail2ban to protect my server. Apache with Phpmyadmin i have make a new filter. for phpmyadmin first files : Code: sudo nano /etc/fail2ban/filter.d/apache-phpmyadmin.conf Code: # Fail2Ban configuration file # Bans bots scanning for non-existing phpMyAdmin installations on your webhost. # [Definition] # Option: failregex # Notes.: Regexp to match often probed and not available phpmyadmin paths. # Values: TEXT # failregex = [client <HOST>] File does not exist: .*(PMA|phpmyadmin|phpMyAdmin|myadmin|mysql|mysqladmin|sqladmin|mypma|xampp|mysqldb|mydb|db|pmadb|phpmyadmin1|myadmin2) # Option: ignoreregex # Notes.: regex to ignore. If this regex matches, the line is ignored. # Values: TEXT # ignoreregex = And i enabled the filter in Jail.local Code: [apache-phpmyadmin] enabled = true port = http,https filter = apache-phpmyadmin logpath = /var/log/apache*/*error*.log /var/www/clients/client1/web4/log/*error*.log maxretry = 3 bantime = 86400 First of all, i see that error.log don't log bad access. for example i try to access to IP//myadmin which result to a 404 not found. nevertheless, In access.log i can found : so why my apache don't log URL that give 404 not found ? or perhaps there is an other logging files with ispconfig ?