initial commit of file from CVS for smeserver-fail2ban on Sat Sep 7 19:53:17 AEST 2024

2024-09-07 19:53:18 +10:00
parent 1700d73fa1
commit 197253af46
86 changed files with 8686 additions and 2 deletions
--- a/root/etc/cron.daily/cleanup_fail2ban
+++ b/root/etc/cron.daily/cleanup_fail2ban
@@ -0,0 +1,27 @@
+#!/usr/bin/perl -w
+
+use strict;
+use warnings;
+use esmith::ConfigDB;
+
+my $c = esmith::ConfigDB->open_ro;
+my $f = esmith::ConfigDB->open('fail2ban');
+my $f2b = $c->get('fail2ban');
+
+exit (0) unless ($f2b);
+
+my $bantime = $f2b->prop('BanTime') || '1800';
+my $mod = 0;
+
+foreach my $ban ($f->get_all_by_prop( type => 'ban')){
+    my $ts = $ban->prop('UnbanTimestamp') || time+$bantime;
+    if ( $ts < time ){
+        $ban->delete;
+        $mod = 1;
+    }
+}
+if ($mod == 1){
+  die "An error occured during fail2ban rule update\n"
+    unless (system('/sbin/e-smith/signal-event fail2ban-update') == 0);
+}
+exit (0);
--- a/root/etc/e-smith/db/configuration/defaults/fail2ban/Mail
+++ b/root/etc/e-smith/db/configuration/defaults/fail2ban/Mail
@@ -0,0 +1 @@
+enabled
--- a/root/etc/e-smith/db/configuration/defaults/fail2ban/status
+++ b/root/etc/e-smith/db/configuration/defaults/fail2ban/status
@@ -0,0 +1 @@
+enabled
--- a/root/etc/e-smith/db/configuration/defaults/fail2ban/type
+++ b/root/etc/e-smith/db/configuration/defaults/fail2ban/type
@@ -0,0 +1 @@
+service
--- a/root/etc/e-smith/events/actions/fail2ban-resume-logs
+++ b/root/etc/e-smith/events/actions/fail2ban-resume-logs
@@ -0,0 +1,32 @@
+#!/bin/sh
+
+STATUS=$(/sbin/e-smith/db configuration getprop fail2ban status || echo disabled)
+if [ "$STATUS" != "enabled" ]; then
+  exit 0
+fi
+
+sleep 1
+# Makes sure /var/log/httpd/error_log is not a dangling symlink
+[ -e /var/log/httpd/error_log ] || touch /var/log/httpd/error_log
+for JAIL in http-overflows http-noscript http-scan http-auth; do
+  /usr/bin/fail2ban-client status $JAIL > /dev/null 2>&1
+  if [ $? -eq 0 ]; then
+    /usr/bin/fail2ban-client set $JAIL addlogpath /var/log/httpd/error_log
+  fi
+done
+
+[ -e /var/log/secure ] || touch /var/log/secure
+for JAIL in pam-generic ftp; do
+  /usr/bin/fail2ban-client status $JAIL > /dev/null 2>&1
+  if [ $? -eq 0 ]; then
+    /usr/bin/fail2ban-client set $JAIL addlogpath /var/log/secure
+  fi
+done
+
+[ -e /var/log/messages ] || touch /var/log/messages
+for JAIL in lemonldap; do
+  /usr/bin/fail2ban-client status $JAIL > /dev/null 2>&1
+  if [ $? -eq 0 ]; then
+    /usr/bin/fail2ban-client set $JAIL addlogpath /var/log/messages
+  fi
+done
--- a/root/etc/e-smith/events/actions/fail2ban-suspend-logs
+++ b/root/etc/e-smith/events/actions/fail2ban-suspend-logs
@@ -0,0 +1,27 @@
+#!/bin/sh
+
+STATUS=$(/sbin/e-smith/db configuration getprop fail2ban status || echo disabled)
+if [ "$STATUS" != "enabled" ]; then
+  exit 0
+fi
+
+for JAIL in http-overflows http-noscript http-scan http-auth; do
+  /usr/bin/fail2ban-client status $JAIL > /dev/null 2>&1
+  if [ $? -eq 0 ]; then
+    /usr/bin/fail2ban-client set $JAIL dellogpath /var/log/httpd/error_log
+  fi
+done
+
+for JAIL in pam-generic ftp; do
+  /usr/bin/fail2ban-client status $JAIL > /dev/null 2>&1
+  if [ $? -eq 0 ]; then
+    /usr/bin/fail2ban-client set $JAIL dellogpath /var/log/secure
+  fi
+done
+
+for JAIL in lemonldap; do
+  /usr/bin/fail2ban-client status $JAIL > /dev/null 2>&1
+  if [ $? -eq 0 ]; then
+    /usr/bin/fail2ban-client set $JAIL dellogpath /var/log/messages
+  fi
+done
--- a/root/etc/e-smith/locale/bg/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/bg/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="bg">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Състояние на услугата на Fail2ban.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Състояние</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Сложи в бял списък всички дефинирани локални мрежи.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>Статус на FilterLocalNetworks</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Поставяне в белия списък на всички оторизирани отдалечени хостове, на които е позволено да достъпват server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>Състояние на FilterValidRemoteHosts</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Задайте стандартното време забрана за затворите (първоначално стандарта е 1800 секунди).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Време за забрана</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Задайте стандартното време за откриване за затворите първоначално стандарта е 900 секунди).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Време за откриване</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Задайте стандартния максимален брой опити преди поставяне на забрана (първоначално стандарта е 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Макс. опити</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Състояние на sshd затвор.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Състояние на затвора на qpsmtpd (входяща поща).</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Състояние на затвора на dovecot (imap услугата за изтегляне на поща).</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Състояние на затвора на httpd. Няколко възможности за включени тук едновремено.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Състояние на затвора на proftpd.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Състояние на затвора на LemonLDAP, ако е инсталиран. Нищо не се изпълнява ако LemonLDAP не е инсталиран или е изключен.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Състояние на затвора на ejabberd, ако е инсталиран. Нищо няма да се стартира ако ejabberd не е инсталиран или изключен.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Състояние на затвора на SOGO, ако е инсталиран. Нищо няма да се стартира ако SOGO не е инсталиран или изключен.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Статус на затворите на wordpress. Трябва да ги активирате ръчно, ако имате такива в инфо слот или като добавка на сървъра. Също, моля инсталирайте и добавките на всичките му инсталации.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Позволени хостове</h2> <p>Това е списък от хостове, които няма да бъдат блокирани от fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Няма елементи</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>За да добавите нова позволена мрежа въведете информацията по-долу.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Оторизирана мрежа</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>За да добавите нова позволена мрежа въведете съответната маска на подмрежа като битове, напр. 22, 25 или 32.</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Оторизирана подмрежа</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Блокирани хостове</h2> <p>Това е списък на хостове, които са блокирани в момента. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Хост видян за пръв път</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>Новите настройки на fail2ban бяха записани.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Не мога да открия записът на fail2ban в БД за конфигурация</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Грешка при опит за спиране на услугата</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>Беше махната забраната за този IP адрес</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>Беше махната забраната за този IP адрес и бе поставен бели списък</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Не мога да махна забраната</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Не мога да махна забраната и да сложа в белия списък</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Изтриване на писмо</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/da/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/da/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="da">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Ingen optegnelser</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Vært set første gang</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Fejl under forsøg på at stoppe denne service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>Det følgende IP er ikke længere blokeret</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>Det følgende IP er ikke længere blokeret og er hvidlistet</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Slet email</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/de/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/de/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="de">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Noch keine Einträge</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host zuerst bemerkt am</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Fehler beim Versuch den service zu stoppen.</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>E-Mail löschen</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/el/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/el/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="el">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>No Entries Yet</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Error while trying to stop service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Email</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/en-us/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/en-us/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,204 @@
+<lexicon lang="en-us">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans>
+	    <![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2>
+	    <p>This is a list of hosts that will not be blocked by fail2ban.</p>
+	    ]]>
+	</trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>No Entries Yet</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans>
+	    <![CDATA[ <h2>Blocked Hosts</h2>
+	    <p>This is a list of hosts that are currently blocked.
+	    ]]>
+	</trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Error while trying to stop service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Alert Email</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/es/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/es/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="es">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Estado</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Aún No Hay Entradas</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host visto por primera vez</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Ocurrió un error mientras se detenía el servicio</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Eliminar email</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/et/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/et/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="et">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Olek</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Pole veel sisestusi</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Teenuse peatamisel ilmnes viga</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Kustuta e-posti</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/fr/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/fr/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="fr">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Statut du service fail2ban.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>État</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Mettre en liste blanche tous les réseaux locaux définis.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>Statut du Filtre des réseaux Locaux</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Mettre en liste blanche tous les hôtes distants autorisés à accéder au gestionnaire du serveur.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>Statut du Filtre des hôtes distants valides</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Paramètre de la durée de bannissement pour les prisons (valeur par défaut initiale de 1800 secondes).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Durée de bannissement</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Définissez la durée de recherche par défaut pour les prisons (la valeur initiale par défaut est de 900 secondes).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Délais de recherche</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Définissez le nombre maximal de tentatives par défaut autorisé avant d'être banni (valeur initiale par défaut est 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Essais maximum</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Statut de la prison sshd.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Statut de la prison qpsmtpd (courriels entrants).</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Statut de la prison dovecot (service imap pour récupérer les courriels).</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Statut des prisons httpd. Plusieurs fonctionnalités y sont activées à la fois.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Statut de la prison proftpd.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Statut de la prison LemonLDAP, si installée. Rien ne fonctionne si LemonLDAP n'est pas installé ou désactivé.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Statut de la prison ejabberd, si installé. S'il n'est ni installé, ni activé, ni en fonction rien ne tourne.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Statut de la prison SOGO, si installé. S'il n'est ni installé, ni activé, ni en fonction rien ne tourne.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Statut des prisons Wordpress. Vous devez l'activer manuellement, que vous l'ayez dans une baie d'information ou que vous utilisiez la contribution. Veuillez également installer le module d'extension dans toutes vos instances Wordpress.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>Wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Hôtes approuvés</h2> <p>Ceci est une liste d'hôtes qui ne sera pas bloquée par fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Aucune entrée</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>Pour ajouter un nouveau réseau approuvé, entrez les détails ci-dessous.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Réseau approuvé</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>Pour ajouter un nouveau réseau approuvé, entrez le sous-réseau associé en utilisant les bits (par ex. 22, 25 ou 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Masque de sous-réseau approuvé</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Hôtes bloqués</h2> <p>C'est une liste d'hôtes actuellement bloqués. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Hôte vu pour la première fois</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>Les nouveaux paramètres de fail2ban ont étés enregistrés.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Impossible de localiser la clef fail2ban dans la base de données de configuration</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Une erreur s'est produite pendant l'arrêt du service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>L'IP a été dé-bannie</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>L'IP a été dé-bannie et mise sur liste blanche</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Impossible de dé-bannir</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Impossible de dé-bannir et de mettre en liste blanche</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Erreur : IP déjà dans la liste blanche</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Envoyer un courriel lors d'un bannissement</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Courriel d'alerte</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/he/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/he/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="he">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>מצב</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>No Entries Yet</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Error while trying to stop service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>דוא"ל</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/hu/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/hu/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="hu">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Állapot</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>No Entries Yet</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Error while trying to stop service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>E-mail</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/id/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/id/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="id">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>No Entries Yet</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Error while trying to stop service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Email</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/it/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/it/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="it">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Stato del servizio fail2ban </trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Stato</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Mette in whitelist tutte le reti locali.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>Stato di FilterLocalNetworks</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Inserire in whitelist tutti gli host remoti autorizzati ad accedere al server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>Stato FilterValidRemoteHosts</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Impostare il periodo di ban per jails (il default iniziale è 1800 secondi).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>Imposta il periodo di find per jails (il default iniziale è 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Impostare il valore di "default max retry" consentito prima del ban (Il default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Stato di sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Stato di qpsmtpd jail (messaggi in ingresso).</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Stato di dovecot jail (servizio imap per caricamento messaggi).</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Stato di httpd jails. Molte caratteristiche per volta vengono abilitate.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Stato di proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Stato di jail LemonLDAP, se installato. Nulla è attivo se LemonLDAP non è installato o è disabilitato.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP </trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Stato di ejabberd jail, se installato. Nulla è attivo se ejabberd non è installato o è disabilitato.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Stato di SOGO jail se installato. Nulla è attivo se SOGO non è installato o è disabilitato.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Stato di wordpress jails. E' necessario attivarlo manualmente sia che lo si abbia in una I-bay o che si usi il contrib. Installare inoltre il plugin in tutte le istanze attive di wordpress.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Host consentiti</h2> <p>Questa è una lista di host che non saranno bloccati da fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Nessun elemento inserito</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>Per aggiungere una nuova rete consentita, inserire i dettagli sotto.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Rete autorizzata</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>Per aggiungere una nuova rete autorizzata, inserire la subnet associata usando i bits (p.e. 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Subnet di rete autorizzate.</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Host bloccati</h2> <p>Questa è la lista degli host correntemente bloccati. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Primo host individuato</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>Le nuove impostazione fail2ban sono state salvate.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Impossibile trovare il record fail2ban nel db di configurazione</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Errore durante l'arresto del servizio</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>L'indirizzo IP è stato rimosso dalla ban-list</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>L'indirizzo IP è stato rimosso dalla ban-list ed inserito in white-list</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Impossibile rimuovere dalla banlist</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Impossibile rimuovere dalla banlist ed inserire nella whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Errore: indirizzo IP già in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Invia la posta in ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Mail di allerta</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/ja/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/ja/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="ja">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>状態</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>No Entries Yet</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Error while trying to stop service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Email</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/nb/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/nb/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="nb">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>No Entries Yet</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Error while trying to stop service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>E-post</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/nl/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/nl/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="nl">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Nog geen gegevens</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host voor het eerst gezien</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Fout opgetreden bij proberen dienst te stoppen</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Verwijder e-mail</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/pl/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/pl/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="pl">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Stan</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>No Entries Yet</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Error while trying to stop service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>E-mail</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/pt-br/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/pt-br/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="pt-br">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Nenhuma entrada ainda</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host visto primeiro em</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Erro enquanto tentando parar serviço</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>O seguinte IP deixou de ser banido</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>O seguinte IP deixou de ser banido e foi colocado na lista branca</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Apagar e-mail</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/pt/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/pt/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="pt">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Nenhuma entrada ainda</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host visto primeiro em</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Erro enquanto tentando parar serviço</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Apagar e-mail</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/ro/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/ro/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="ro">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Stare</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Nu există nici o înregistrare</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Client observat prima data</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>A apărut o eroare când s-a încercat oprirea serviciului</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Șterge email</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/ru/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/ru/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="ru">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Состояние</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Нет элементов</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Хост впервые обнаружен</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Ошибка при попытке остановить службу</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Удалить письмо</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/sl/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/sl/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="sl">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>No Entries Yet</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Error while trying to stop service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Email</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/sv/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/sv/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="sv">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Status</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Inga värden ännu</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Värd sett första gången</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Ett fel uppstod vid försök att stoppa service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>Radera e-post</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/th/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/th/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="th">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>สถานะ</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>No Entries Yet</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Host first seen</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Error while trying to stop service</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>ลบอีเมล์</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/tr/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/tr/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="tr">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>Durum</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>Giriş izni yok</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>Sunucunu ilk defa görülmesi</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>Servisi durdurmaya çalışırken hata oluştu</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>E-posta</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/zh-cn/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/zh-cn/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="zh-cn">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>状态</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>还没有输入</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>第一次出现的主机</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>停止服务时出错</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>删除邮件</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/locale/zh-tw/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/locale/zh-tw/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,196 @@
+<lexicon lang="zh-tw">
+    <entry>
+	<base>SERVICE_STATUS</base>
+	<trans>Fail2ban service status.</trans>
+    </entry>
+    <entry>
+	<base>STATUS</base>
+	<trans>狀態</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks_STATUS</base>
+        <trans>Whitelist all the local network defined.</trans>
+    </entry>
+    <entry>
+        <base>FilterLocalNetworks</base>
+        <trans>FilterLocalNetworks status</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts_STATUS</base>
+        <trans>Whitelist all the authorized remote hosts allowed to acces server-manager.</trans>
+    </entry>
+    <entry>
+        <base>FilterValidRemoteHosts</base>
+        <trans>FilterValidRemoteHosts status</trans>
+    </entry>
+    <entry>
+        <base>BANTIME</base>
+        <trans>Set the default ban time for jails (Initial default is 1800 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_BANTIME</base>
+        <trans>Bantime</trans>
+    </entry>
+    <entry>
+        <base>FINDTIME</base>
+        <trans>>Set the default find time for jails (Initial default is 900 seconds).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_FINDTIME</base>
+        <trans>Findtime</trans>
+    </entry>
+    <entry>
+        <base>MAXRETRY</base>
+        <trans>Set the default max retry allowed before being ban (Initial default is 3).</trans>
+    </entry>
+    <entry>
+        <base>DEFAULT_MAXRETRY</base>
+        <trans>Maxretry</trans>
+    </entry>
+    <entry>
+        <base>SSHD_STATUS</base>
+        <trans>Status of sshd jail.</trans>
+    </entry>
+    <entry>
+        <base>SSHD</base>
+        <trans>sshd</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD_STATUS</base>
+        <trans>Status of qpsmtpd (incoming emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>QPSMTPD</base>
+        <trans>qpsmtpd</trans>
+    </entry>
+    <entry>
+        <base>IMAP_STATUS</base>
+        <trans>Status of dovecot (imap service to retrieve emails) jail.</trans>
+    </entry>
+    <entry>
+        <base>IMAP</base>
+        <trans>dovecot</trans>
+    </entry>
+    <entry>
+        <base>HTTPD_STATUS</base>
+        <trans>Status of httpd jails. Multiple features are enabled at once there.</trans>
+    </entry>
+    <entry>
+        <base>HTTPD</base>
+        <trans>httpd</trans>
+    </entry>
+    <entry>
+        <base>FTP_STATUS</base>
+        <trans>Status of proftpd jail.</trans>
+    </entry>
+    <entry>
+        <base>FTP</base>
+        <trans>proftpd</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP_STATUS</base>
+        <trans>Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>LEMONLDAP</base>
+        <trans>LemonLDAP</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD_STATUS</base>
+        <trans>Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>EJABBERD</base>
+        <trans>ejabberd</trans>
+    </entry>
+    <entry>
+        <base>SOGOD_STATUS</base>
+        <trans>Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.</trans>
+    </entry>
+    <entry>
+        <base>SOGOD</base>
+        <trans>SOGO</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS_STATUS</base>
+        <trans>Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.</trans>
+    </entry>
+    <entry>
+        <base>WORDPRESS</base>
+        <trans>wordpress</trans>
+    </entry>
+    <entry>
+	<base>VALIDFROM_DESC</base>
+	<trans><![CDATA[ <hr class="sectionbar" /><h2>Allowed Hosts</h2> <p>This is a list of hosts that will not be blocked by fail2ban.</p> ]]></trans>
+    </entry>
+    <entry>
+	<base>NO_ENTRIES_YET</base>
+	<trans>尚無輸入</trans>
+    </entry>
+    <entry>
+	<base>DESC_ADD_IP</base>
+	<trans>To add a new allowed network, enter the details below.</trans>
+    </entry>
+    <entry>
+        <base>ADD_IP</base>
+        <trans>Authorized network</trans>
+    </entry>
+    <entry>
+        <base>DESC_ADD_BITS</base>
+        <trans>To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).</trans>
+    </entry>
+    <entry>
+        <base>ADD_BITS</base>
+        <trans>Authorized network subnet</trans>
+    </entry>
+    <entry>
+	<base>CURRENT_DENY_DESC</base>
+	<trans><![CDATA[ <h2>Blocked Hosts</h2> <p>This is a list of hosts that are currently blocked. ]]></trans>
+    </entry>
+    <entry>
+	<base>FIRST_SEEN</base>
+	<trans>首次訪問的主機</trans>
+    </entry>
+    <entry>
+	<base>SUCCESS</base>
+	<trans>The new fail2ban settings have been saved.</trans>
+    </entry>
+    <entry>
+	<base>ERR_NO_RECORD</base>
+	<trans>Unable to locate fail2ban record in configuration db</trans>
+    </entry>
+    <entry>
+	<base>ERROR_STOPPING</base>
+	<trans>錯誤發生於試圖停止服務時</trans>
+    </entry>            
+    <entry>
+        <base>SUCCESS_IP</base>
+        <trans>The following IP has been unbanned</trans>
+    </entry>
+    <entry>
+        <base>SUCCESS_IP_WHITE</base>
+        <trans>The following IP has been unbanned and whitelisted</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING</base>
+        <trans>Unable to unban</trans>
+    </entry>
+    <entry>
+        <base>ERROR_UPDATING_WHITE</base>
+        <trans>Unable to unban and whitelist</trans>
+    </entry>
+    <entry>
+        <base>ERR_EXISTS</base>
+        <trans>Error: IP already in whitelist</trans>
+    </entry>
+    <entry>
+        <base>SEND_MAIL_STATUS</base>
+        <trans>Send mail on ban</trans>
+    </entry>
+    <entry>
+        <base>EMAIL</base>
+        <trans>郵件刪除</trans>
+    </entry>
+
+
+</lexicon>
--- a/root/etc/e-smith/templates/etc/backup-data.d/smeserver-fail2ban.include/template-begin
+++ b/root/etc/e-smith/templates/etc/backup-data.d/smeserver-fail2ban.include/template-begin
@@ -0,0 +1,22 @@
+#Only non rpm owned files are backupe there
+{
+use RPM2;
+my $rpm_db = RPM2->open_rpm_db();
+
+my @dirs = qw(
+/etc/fail2ban
+/etc/fail2ban/action.d
+/etc/fail2ban/fail2ban.d
+/etc/fail2ban/filter.d
+/etc/fail2ban/jail.d
+);
+
+foreach  my $some_dir  (@dirs)  {
+  opendir(my $dh, $some_dir) || die "Can't open $some_dir: $!";
+  while ( (my $file = readdir $dh) ) {
+    next if $file =~ /^\.{1,2}$/;
+    $OUT .= "$some_dir/$file\n" unless $rpm_db->find_by_file("$some_dir/$file");
+  }
+  closedir $dh;
+}
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/fail2ban.conf/10All
+++ b/root/etc/e-smith/templates/etc/fail2ban/fail2ban.conf/10All
@@ -0,0 +1,8 @@
+[Definition]
+loglevel = INFO
+logtarget = /var/log/fail2ban/daemon.log
+syslogsocket = auto
+socket = /var/run/fail2ban/fail2ban.sock
+pidfile = /var/run/fail2ban/fail2ban.pid
+dbfile = /var/lib/fail2ban/fail2ban.sqlite3
+dbpurgeage = 604800
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/00Default
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/00Default
@@ -0,0 +1 @@
+[DEFAULT]
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/05IgnoreIP
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/05IgnoreIP
@@ -0,0 +1,38 @@
+{
+
+use esmith::NetworksDB;
+use Net::IPv4Addr;
+
+my $n = esmith::NetworksDB->open_ro() ||
+  die "Couldn't open networks DB\n";
+
+my @ip = ("127.0.0.0/8", $LocalIP);
+
+# Add hosts which can access the server-manager to the whitelist
+unless (($fail2ban{FilterValidRemoteHosts} || 'disabled') eq 'enabled'){
+  foreach (split /[,;]/, (${'httpd-admin'}{'ValidFrom'} || '')){
+      my ($ip,$bits) = Net::IPv4Addr::ipv4_parse("$_");
+      push @ip, "$ip/$bits" unless "$ip" eq '0.0.0.0';
+  }
+}
+
+unless (($fail2ban{FilterLocalNetworks} || 'disabled') eq 'enabled'){
+  foreach my $net ($n->networks){
+    my $key = $net->key;
+    my $mask = $net->prop('Mask');
+    my ($ip,$bits) = Net::IPv4Addr::ipv4_parse("$key/$mask");
+    push @ip, "$ip/$bits";
+  }
+}
+
+# Add a local whitelist
+foreach (split /[,;]/, ($fail2ban{'IgnoreIP'} || '')){
+    my $addr = $_;
+    $addr .= '/32' unless ($addr =~ m/\/\d{1,2}$/);
+    my ($ip,$bits) = Net::IPv4Addr::ipv4_parse("$addr");
+    push @ip, "$ip/$bits";
+}
+
+$OUT .= "ignoreip = " . join(" ", @ip);
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/10BanTime
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/10BanTime
@@ -0,0 +1,7 @@
+{
+
+our $bantime = $fail2ban{'BanTime'} || '1800';
+
+$OUT .= "bantime  = $bantime";
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/10FindTime
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/10FindTime
@@ -0,0 +1,7 @@
+{
+
+our $findtime = $fail2ban{'FindTime'} || '900';
+
+$OUT .= "findtime  = $findtime";
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/15MaxRetries
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/15MaxRetries
@@ -0,0 +1,6 @@
+{
+our $maxretry = $fail2ban{'MaxRetry'} || '3';
+
+$OUT .= "maxretry = $maxretry";
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/16Dns
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/16Dns
@@ -0,0 +1 @@
+usedns = yes
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/20Backend
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/20Backend
@@ -0,0 +1 @@
+backend = auto
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/25Actions
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/25Actions
@@ -0,0 +1,7 @@
+{
+
+our $mail = $fail2ban{'Mail'} || 'disabled';
+our $maildest = $fail2ban{'MailRecipient'} || 'root';
+return '';
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service10ssh
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service10ssh
@@ -0,0 +1,31 @@
+{
+
+my $port = $sshd{'TCPPort'} || '22';
+my $status = $sshd{'status'} || 'disabled';
+my $f2b = $sshd{'Fail2Ban'} || 'enabled';
+return "" if (($status ne 'enabled') || ($f2b ne 'enabled'));
+$OUT .=<<"EOF";
+
+[ssh]
+enabled  = true
+filter   = sshd
+logpath  = /var/log/sshd/sshd.log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"SSH\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+$OUT .=<<"EOF";
+
+[ssh-ddos]
+enabled  = true
+filter   = sshd-ddos
+logpath  = /var/log/sshd/sshd.log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"SSH\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service15dovecot
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service15dovecot
@@ -0,0 +1,25 @@
+{
+
+my $status = $dovecot{'status'} || 'disabled';
+my $f2b = $dovecot{'Fail2Ban'} || 'enabled';
+return "" if (($status ne 'enabled') || ($f2b ne 'enabled'));
+my @ports = ();
+push @ports, ($imap{'TCPPort'} || '143')
+    if (($imap{'status'} || 'disabled') eq 'enabled');
+push @ports, ($imaps{'TCPPort'} || '993')
+    if (($imaps{'status'} || 'disabled') eq 'enabled');
+my $port = join (",", @ports);
+
+$OUT .=<<"EOF";
+
+[imap]
+enabled  = true
+filter   = dovecot
+logpath  = /var/log/dovecot/dovecot.log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"Dovecot\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service20qpsmtpd
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service20qpsmtpd
@@ -0,0 +1,27 @@
+{
+
+my $status = $qpsmtpd{'status'} || 'disabled';
+my $f2b = $qpsmtpd{'Fail2Ban'} || 'enabled';
+return "" if (($status ne 'enabled') || ($f2b ne 'enabled'));
+my @ports = ();
+push @ports, ($qpsmtpd{'TCPPort'} || '25');
+push @ports, ($sqpsmtpd{'TCPPort'} || '465')
+  if (($sqpsmtpd{'status'} || 'disabled') eq 'enabled');
+my $port = join (",", @ports);
+
+my $max = $maxretry*3;
+
+$OUT .=<<"EOF";
+
+[qpsmtpd]
+enabled  = true
+filter   = qpsmtpd
+logpath  = /var/log/*qpsmtpd/current
+maxretry = $max
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"Qpsmtpd\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service25httpd
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service25httpd
@@ -0,0 +1,97 @@
+{
+
+my $status = ${'httpd-e-smith'}{'status'} || 'disabled';
+my $f2b = ${'httpd-e-smith'}{'Fail2Ban'} || 'enabled';
+return "" if (($status ne 'enabled') || ($f2b ne 'enabled'));
+my @ports = ();
+push @ports, (${'httpd-e-smith'}{'TCPPort'} || '80');
+push @ports, ($modSSL{'TCPPort'} || '443');
+my $port = join (",", @ports);
+
+$OUT .=<<"EOF";
+
+[http-overflows]
+enabled  = true
+filter   = apache-overflows
+logpath  = /var/log/httpd/error_log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"Apache (overflows)\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+$OUT .=<<"EOF";
+
+[http-noscript]
+enabled  = true
+filter   = apache-noscript
+logpath  = /var/log/httpd/error_log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"Apache (noscript)\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+$OUT .=<<"EOF";
+
+[http-scan]
+enabled  = true
+filter   = apache-scan
+logpath  = /var/log/httpd/error_log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"Apache (scan)\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+$OUT .=<<"EOF";
+
+[http-auth]
+enabled  = true
+filter   = apache-auth
+logpath  = /var/log/httpd/error_log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"Apache (auth)\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+$OUT .=<<"EOF";
+
+[http-badbots]
+enabled  = true
+filter   = apache-badbots
+logpath  = /var/log/httpd/access_log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"Apache (badbots)\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+$OUT .=<<"EOF";
+
+[http-shellshock]
+enabled  = true
+filter   = apache-shellshock
+logpath  = /var/log/httpd/error_log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"Apache (shellshock)\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+$OUT .=<<"EOF";
+
+[http-fakegooglebot]
+enabled  = true
+filter   = apache-fakegooglebot
+logpath  = /var/log/httpd/error_log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"Apache (fakegooglebot)\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service30pam
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service30pam
@@ -0,0 +1,11 @@
+
+[pam-generic]
+enabled  = true
+filter   = pam-generic
+logpath  = /var/log/secure
+maxretry = {$maxretry*2}
+action   = smeserver-iptables[bantime={"$bantime"}]
+{
+$OUT .= "           smeserver-sendmail[name=\"PAM generic\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service32Smanager
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service32Smanager
@@ -0,0 +1,25 @@
+{
+my $port = (${'httpd-e-smith'}{'TCPPort'} || '80') .','. 
+	    ($modSSL{'TCPPort'} || '443');
+my $status = $smanager{'status'} || 'disabled';
+my $f2b = $smanager{'Fail2Ban'} || 'enabled';
+return "" if (($status ne 'enabled') || ($f2b ne 'enabled'));
+
+$OUT .=<<"EOF";
+
+[smanager]
+enabled  = true
+port     = $port
+filter   = smanager
+logpath  = /usr/share/smanager/log/production.log
+maxretry = 3
+findtime = 300
+bantime  = 1800
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"SManager\",dest=$maildest]\n"
+    	if ($mail eq 'enabled');
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service35SOGo
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service35SOGo
@@ -0,0 +1,24 @@
+{
+
+my $status = $sogod{'status'} || 'disabled';
+my $f2b = $sogod{'Fail2Ban'} || 'enabled';
+return "\n#Sogo not available" unless ( -f "/var/log/sogo/sogo.log" );
+return "" if (($status ne 'enabled') || ($f2b ne 'enabled'));
+my @ports = ();
+push @ports, (${'httpd-e-smith'}{'TCPPort'} || '80');
+push @ports, ($modSSL{'TCPPort'} || '443');
+my $port = join (",", @ports);
+
+$OUT .=<<"EOF";
+
+[sogo]
+enabled  = true
+filter   = sogo-auth
+logpath  = /var/log/sogo/sogo.log
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"SOGo\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service40LemonLDAPNG
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service40LemonLDAPNG
@@ -0,0 +1,23 @@
+{
+
+my $status = ${'lemonldap'}{'status'} || 'disabled';
+my $f2b = ${'lemonldap'}{'Fail2Ban'} || 'enabled';
+return "" if (($status ne 'enabled') || ($f2b ne 'enabled'));
+my @ports = ();
+push @ports, (${'httpd-e-smith'}{'TCPPort'} || '80');
+push @ports, ($modSSL{'TCPPort'} || '443');
+my $port = join (",", @ports);
+
+$OUT .=<<"EOF";
+
+[lemonldap]
+enabled  = true
+filter   = lemonldap-ng
+logpath  = /var/log/messages
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"LemonLDAP::NG\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service45ftp
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service45ftp
@@ -0,0 +1,21 @@
+{
+
+my $port = $ftp{'TCPPort'} || '21';
+my $status = $ftp{'status'} || 'disabled';
+my $f2b = $ftp{'Fail2Ban'} || 'enabled';
+return "" if (($status ne 'enabled') || ($f2b ne 'enabled'));
+# add the data channel port
+$port .= ',20';
+$OUT .=<<"EOF";
+
+[ftp]
+enabled  = true
+filter   = proftpd
+logpath  = /var/log/secure
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"FTP\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+}
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service50Ejabberd
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/30Service50Ejabberd
@@ -0,0 +1,21 @@
+{
+
+my $status = $ejabberd{'status'} || 'disabled';
+my $f2b = $ejabberd{'Fail2Ban'} || 'enabled';
+return "" if (($status ne 'enabled') || ($f2b ne 'enabled'));
+my $port = $ejabberd{'TCPPorts'} || '5222,5223,5269';
+
+$OUT .=<<"EOF";
+
+[ejabberd]
+enabled  = true
+filter   = ejabberd-auth
+logpath  = /var/log/ejabberd.run/current
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$bantime]
+EOF
+
+$OUT .= "           smeserver-sendmail[name=\"Ejabberd\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+}
+
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/45wordpress
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/45wordpress
@@ -0,0 +1,68 @@
+{
+
+my $status = $fail2ban{'wordpress'} || 'disabled';
+return "\n# wordpress disabled \n" if ($status ne 'enabled') ;
+my @ports = ();
+push @ports, (${'httpd-e-smith'}{'TCPPort'} || '80');
+push @ports, ($modSSL{'TCPPort'} || '443');
+my $port = join (",", @ports);
+
+my $wphbantime  = $fail2ban{'WPHbantime'} || $bantime;
+my $wpsbantime  = $fail2ban{'WPSbantime'} || $bantime;
+my $wpxbantime  = $fail2ban{'WPXbantime'} || $bantime;
+my $wphfindtime = $fail2ban{'WPHfindtime'} || $findtime;
+my $wpsfindtime = $fail2ban{'WPSfindtime'} || $findtime;
+my $wpxfindtime = $fail2ban{'WPXfindtime'} || $findtime;
+my $wphmaxretry = $fail2ban{'WPHmaxretry'} || $maxretry;
+my $wpsmaxretry = $fail2ban{'WPSmaxretry'} || $maxretry;
+my $wpxmaxretry = $fail2ban{'WPXmaxretry'} || $maxretry;
+
+$OUT .=<<"EOF";
+
+[wordpress-hard]
+enabled = true
+filter = wordpress-hard
+logpath = /var/log/messages
+findtime = $wphfindtime
+maxretry = $wphmaxretry
+bantime  = $wphbantime
+backend = polling
+action = smeserver-iptables[port="$port",protocol=tcp,bantime=$wphbantime]
+EOF
+$OUT .= "            smeserver-sendmail[name=\"Wordpress (hard)\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+
+$OUT .=<<"EOF";
+
+[wordpress-soft]
+enabled  = true
+filter = wordpress-soft
+logpath = /var/log/messages
+findtime = $wpsfindtime
+maxretry = $wpsmaxretry
+bantime  = $wpsbantime
+backend = polling
+action = smeserver-iptables[port="$port",protocol=tcp,bantime=$wpsbantime]
+EOF
+$OUT .= "            smeserver-sendmail[name=\"Wordpress (soft)\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+
+$OUT .=<<"EOF";
+
+[apache-xmlrpc]
+enabled  = true
+port     = http,https
+filter   = apache-xmlrpc
+logpath  = /var/log/httpd/access_log
+findtime = $wpxfindtime
+maxretry = $wpxmaxretry
+bantime  = $wpxbantime
+action   = smeserver-iptables[port="$port",protocol=tcp,bantime=$wpxbantime]
+EOF
+$OUT .= "           smeserver-sendmail[name=\"Wordpress (xmlrpc)\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+}
+
--- a/root/etc/e-smith/templates/etc/fail2ban/jail.conf/90Recidive
+++ b/root/etc/e-smith/templates/etc/fail2ban/jail.conf/90Recidive
@@ -0,0 +1,21 @@
+{
+my $rbantime  = $fail2ban{'RecidiveBanTime'} || '604800';
+my $rfindtime = $fail2ban{'RecidiveFindTime'} || '86400';
+my $rmaxretry = $fail2ban{'RecidiveMaxRetry'} || '5';
+my $raction = 'smeserver-iptables[bantime=' . $rbantime . ']' . "\n";
+$raction .= "           smeserver-sendmail[name=\"Recidive\",dest=$maildest]\n"
+    if ($mail eq 'enabled');
+
+$OUT .=<<"EOF";
+
+[recidive]
+enabled  = true
+filter   = recidive
+logpath  = /var/log/fail2ban/daemon.log
+bantime  = $rbantime
+findtime = $rfindtime
+maxretry = $rmaxretry
+backend  = polling
+action   = $raction
+EOF
+}
--- a/root/etc/e-smith/templates/etc/logrotate.d/fail2ban/10All
+++ b/root/etc/e-smith/templates/etc/logrotate.d/fail2ban/10All
@@ -0,0 +1,8 @@
+/var/log/fail2ban/*.log \{
+        missingok
+        weekly
+        rotate 24
+        compress
+        notifempty
+        copytruncate
+\}
--- a/root/etc/e-smith/templates/etc/rc.d/init.d/masq/40Fail2Ban
+++ b/root/etc/e-smith/templates/etc/rc.d/init.d/masq/40Fail2Ban
@@ -0,0 +1,6 @@
+    # A blacklist chain for fail2ban
+    /sbin/iptables --new-chain Fail2Ban
+    /sbin/iptables --new-chain Fail2Ban_1
+    /sbin/iptables --append Fail2Ban -j Fail2Ban_1
+    /sbin/iptables --insert INPUT 1 \
+        -j Fail2Ban
--- a/root/etc/e-smith/templates/etc/rc.d/init.d/masq/90adjustFail2Ban
+++ b/root/etc/e-smith/templates/etc/rc.d/init.d/masq/90adjustFail2Ban
@@ -0,0 +1,33 @@
+{
+    my $f2bdb = esmith::ConfigDB->open_ro('fail2ban') ||
+        esmith::ConfigDB->create('fail2ban');
+    # Find the current Fail2Ban_$$ chain, and create a new one.
+    $OUT .=<<'EOF';
+    OLD_Fail2Ban=$(get_safe_id Fail2Ban filter find)
+    NEW_Fail2Ban=$(get_safe_id Fail2Ban filter new)
+    /sbin/iptables --new-chain $NEW_Fail2Ban
+EOF
+
+    if ( ($fail2ban{'status'} || 'disabled') eq 'enabled' ){
+        foreach my $ban ( $f2bdb->get_all_by_prop(type=>('ban')) ){
+            my $ip = $ban->prop('Host');
+            my $proto = $ban->prop('Protocol') || '';
+            my $port = $ban->prop('Port') || '';
+            $OUT .= "    /sbin/iptables --append \$NEW_Fail2Ban -s $ip";
+            $OUT .= " -p $proto" if ($proto =~ m/^tcp|udp|icmp$/);
+            $OUT .= " -m multiport --dports $port" if ($proto =~ m/^tcp|udp$/ && $port =~ m/^\d+(,\d+)*$/);
+            $OUT .= " -j denylog\n";
+        }
+        $OUT .= "    /sbin/iptables --append  \$NEW_Fail2Ban" .
+                " -j RETURN\n";
+    }
+
+    # Having created a new Fail2Ban chain, activate it and destroy the old.
+    $OUT .=<<'EOF';
+    /sbin/iptables --replace Fail2Ban 1 \
+            --jump $NEW_Fail2Ban
+    /sbin/iptables --flush $OLD_Fail2Ban
+    /sbin/iptables --delete-chain $OLD_Fail2Ban
+EOF
+
+}
--- a/root/etc/e-smith/web/functions/fail2ban
+++ b/root/etc/e-smith/web/functions/fail2ban
@@ -0,0 +1,154 @@
+#!/usr/bin/perl -wT
+# vim: ft=xml ts=8 sw=4 noet:
+#----------------------------------------------------------------------
+# heading     : Security
+# description : Fail2Ban
+# navigation  : 5000 5250
+#----------------------------------------------------------------------
+
+use strict;
+use esmith::FormMagick::Panel::fail2ban;
+my $f = esmith::FormMagick::Panel::fail2ban->new();
+$f->display();
+
+__DATA__
+<form title="Fail2Ban" header="/etc/e-smith/web/common/head.tmpl"
+    footer="/etc/e-smith/web/common/foot.tmpl">
+    <page name="First"  post-event="change_whitelist()"
+	pre-event="print_status_message()">
+
+        <subroutine src="show_config_link()"/>
+
+
+	<subroutine src="show_valid_from_list()"/>
+	<field type="text" id="ip" value=""
+	    validation="ip_number_or_blank">
+	    <description>DESC_ADD_IP</description>
+	    <label>ADD_IP</label>
+	</field>
+        <field type="text" id="bits" value=""
+            validation="subnet_mask_bit, validate_network_and_mask">
+            <description>DESC_ADD_BITS</description>
+            <label>ADD_BITS</label>
+        </field>
+
+
+	<subroutine src="print_button('SAVE')" />
+
+	<subroutine src="show_current_deny()"/>
+    </page>
+    <page name="Second"  
+        pre-event="RemoveIP()">
+	<subroutine src="print_status_message()" />
+	<subroutine src="back()" />
+    </page>
+
+
+
+
+    <page name="Config"  
+        post-event="change_settings()" >
+        <subroutine src="print_status_message()" />
+        <field type="select" id="status"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('fail2ban', 'status')">
+            <label>STATUS</label>
+            <description>SERVICE_STATUS</description>
+        </field>
+        <field type="select" id="FilterLocalNetworks"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('fail2ban', 'FilterLocalNetworks')">
+            <label>FilterLocalNetworks</label>
+            <description>FilterLocalNetworks_STATUS</description>
+        </field>
+        <field type="select" id="FilterValidRemoteHosts"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('fail2ban', 'FilterValidRemoteHosts')">
+            <label>FilterValidRemoteHosts</label>
+            <description>FilterValidRemoteHosts_STATUS</description>
+        </field>
+
+        <field type="select" id="Mail"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('fail2ban', 'Mail')">
+            <label>MAIL</label>
+            <description>SEND_MAIL_STATUS</description>
+        </field>
+
+        <field type="text" id="BanTime" value="get_prop('fail2ban', 'BanTime')"
+            validation="">
+            <description>BANTIME</description>
+            <label>DEFAULT_BANTIME</label>
+        </field>
+
+        <field type="text" id="FindTime" value="get_prop('fail2ban', 'FindTime')"
+            validation="">
+            <description>FINDTIME</description>
+            <label>DEFAULT_FINDTIME</label>
+        </field>
+        <field type="text" id="MaxRetry" value="get_prop('fail2ban', 'MaxRetry')"
+            validation="">
+            <description>MAXRETRY</description>
+            <label>DEFAULT_MAXRETRY</label>
+        </field>
+
+        <field type="select" id="sshd"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('sshd', 'Fail2Ban')">
+            <label>SSHD</label>
+            <description>SSHD_STATUS</description>
+        </field>
+        <field type="select" id="qpsmtpd"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('qpsmtpd', 'Fail2Ban')">
+            <label>QPSMTPD</label>
+            <description>QPSMTPD_STATUS</description>
+        </field>        
+        <field type="select" id="dovecot"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('dovecot', 'Fail2Ban')">
+            <label>IMAP</label>
+            <description>IMAP_STATUS</description>
+        </field>
+        <field type="select" id="httpd-e-smith"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('httpd-e-smith', 'Fail2Ban')">
+            <label>HTTPD</label>
+            <description>HTTPD_STATUS</description>
+        </field>
+        <field type="select" id="ftp"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('ftp', 'Fail2Ban')">
+            <label>FTP</label>
+            <description>FTP_STATUS</description>
+        </field>
+        <field type="select" id="lemonldap"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('lemonldap', 'Fail2Ban')">
+            <label>LEMONLDAP</label>
+            <description>LEMONLDAP_STATUS</description>
+        </field>
+        <field type="select" id="ejabberd"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('ejabberd', 'Fail2Ban')">
+            <label>EJABBERD</label>
+            <description>EJABBERD_STATUS</description>
+        </field>
+        <field type="select" id="sogod"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('sogod', 'Fail2Ban')">
+            <label>SOGOD</label>
+            <description>SOGOD_STATUS</description>
+        </field>
+        <field type="select" id="wordpress"
+            options=" 'enabled' => 'ENABLED', 'disabled' => 'DISABLED'"
+            value="get_prop('fail2ban', 'wordpress')">
+            <label>WORDPRESS</label>
+            <description>WORDPRESS_STATUS</description>
+        </field>
+
+        <subroutine src="print_button('SAVE')" />
+
+    </page>
+</form>
+
--- a/root/etc/fail2ban/action.d/smeserver-iptables.conf
+++ b/root/etc/fail2ban/action.d/smeserver-iptables.conf
@@ -0,0 +1,13 @@
+
+[Definition]
+
+actionstart =
+actionstop =
+actioncheck =
+actionban = /sbin/e-smith/smeserver-fail2ban --host=<ip> --proto=<protocol> --port=<port> --bantime=<bantime>
+actionunban = /sbin/e-smith/smeserver-fail2ban --host=<ip> --unban --proto=<protocol> --port=<port>
+
+[Init]
+protocol = undef
+port = undef
+bantime = undef
--- a/root/etc/fail2ban/action.d/smeserver-sendmail.conf
+++ b/root/etc/fail2ban/action.d/smeserver-sendmail.conf
@@ -0,0 +1,21 @@
+
+[Definition]
+
+actionstart =
+actionstop  =
+actioncheck =
+actionban = printf %%b "Subject: [Fail2Ban] <name>: banned <ip>
+            From: Fail2Ban <<sender>>
+            To: <dest>\n
+            Hi,\n
+            The IP <ip> has just been banned by Fail2Ban after
+            <failures> attempts against <name>.\n
+            Regards,\n
+            Fail2Ban" | /usr/sbin/sendmail -f <sender> <dest>
+actionunban =
+
+[Init]
+name = default
+dest = root
+sender = fail2ban
+
--- a/root/etc/fail2ban/filter.d/apache-auth.local
+++ b/root/etc/fail2ban/filter.d/apache-auth.local
@@ -0,0 +1,2 @@
+[Definition]
+ignoreregex = ^%(_apache_error_client)s (AH01797: )?client denied by server configuration: /etc/httpd/conf/proxy/proxy\.pac\s*$
--- a/root/etc/fail2ban/filter.d/apache-scan.conf
+++ b/root/etc/fail2ban/filter.d/apache-scan.conf
@@ -0,0 +1,11 @@
+[Definition]
+re_pma = (admin|administrator|database|db|sql|typo3|xampp\/)?(pma|PMA|phpmyadmin|phpMyAdmin(\-?[\d\.\-]+((rc|pl|beta)\d+)?)?|myadmin|mysql|mysqladmin|sqladmin|mypma|xampp|mysqldb|mydb|db|pmadb|phpmyadmin1|myadmin2|php\-my\-admin|sqlmanager|websql|sqlweb|MyAdmin|phpadmin|sql|pma2005|databaseadmin|phpmanager)(\/main\.php|setup\.php|read_dump\.php|read_dump\.phpmain\.php)?
+re_admin = administrator(\/index\.php)?|manager(\/(status|html))?|webadmin|ecrire|admin((\.php)|(\/(config|login)\.php))?|mailadmin|setup\.php|admin\/modules\/backup\/page\.backup\.php
+re_proxy = freenode-proxy-checker\.txt|proxychecker|proxyheader\.php
+re_various = vtigercrm|typo3|scripts|wp\-admin|wp\-login\.php|wordpress|horde(\d+(\/+README)?)?|w00tw00t\.*|\/?plmplmplm\/plm\.php
+
+failregex = \[client <HOST>\] File does not exist: .*\/(%(re_pma)s|%(re_admin)s|%(re_proxy)s|%(re_various)s)$
+            \[client <HOST>\] client denied by server configuration: .*\/(%(re_admin)s|%(re_proxy)s)$
+            \[client <HOST>\] client sent HTTP/1.1 request without hostname \(see RFC2616 section 14.23\):
+
+ignoreregex =
--- a/root/etc/fail2ban/filter.d/apache-xmlrpc.conf
+++ b/root/etc/fail2ban/filter.d/apache-xmlrpc.conf
@@ -0,0 +1,5 @@
+[Definition]
+failregex = ^<HOST> .*POST .*xmlrpc\.php.*
+ignoreregex =
+
+# source http://xplus3.net/2013/05/09/securing-xmlrpc-wordpress/
--- a/root/etc/fail2ban/filter.d/lemonldap-ng.conf
+++ b/root/etc/fail2ban/filter.d/lemonldap-ng.conf
@@ -0,0 +1,11 @@
+[INCLUDES]
+before = common.conf
+
+[Definition]
+
+_daemon = lemonldap\-ng
+
+failregex = ^\s*%(__prefix_line)s\s*Lemonldap::NG : .* was not found in LDAP directory \(<HOST>\)\s*$
+            ^\s*%(__prefix_line)s\s*Lemonldap::NG : Bad password for .* \(<HOST>\)\s*$
+
+ignoreregex =
--- a/root/etc/fail2ban/filter.d/qpsmtpd.conf
+++ b/root/etc/fail2ban/filter.d/qpsmtpd.conf
@@ -0,0 +1,11 @@
+[INCLUDES]
+before = common.conf
+
+[Definition]
+
+_daemon = qpsmtpd
+
+failregex = ^\s*\d+\s*logging::logterse plugin \(deny\): ` <HOST>\s*.*90\d.*msg denied before queued$
+            ^\s*\d+\s*\(deny\) logging::logterse: ` <HOST>\s*.*90\d.*msg denied before queued$
+
+ignoreregex = logters.*greylisting.*90.*temporarily denied
--- a/root/etc/fail2ban/filter.d/smanager.conf
+++ b/root/etc/fail2ban/filter.d/smanager.conf
@@ -0,0 +1,12 @@
+# Fail2Ban filter for Smanager attempted bypasses
+
+[Definition]
+#[Mon Nov  9 20:33:34 2020] [info] Login FAILED: mab	192.168.0.11
+
+failregex = ^\[.*\] \[info\] Login FAILED: .*\t<HOST>$
+
+ignoreregex = ^\[.*\] \[debug\] .*$
+ignoreregex = ^\[.*\] \[info\] Login succeeded: .*$
+
+datepattern = {^LN-BEG}
+
--- a/root/etc/fail2ban/filter.d/sshd-ddos.conf
+++ b/root/etc/fail2ban/filter.d/sshd-ddos.conf
@@ -0,0 +1,28 @@
+# Fail2Ban ssh filter for at attempted exploit
+#
+# The regex here also relates to a exploit:
+#
+#  http://www.securityfocus.com/bid/17958/exploit
+#  The example code here shows the pushing of the exploit straight after
+#  reading the server version. This is where the client version string normally
+#  pushed. As such the server will read this unparsible information as
+#  "Did not receive identification string".
+# Author: Yaroslav Halchenko
+
+[INCLUDES]
+
+# Read common prefixes. If any customizations available -- read them from
+# common.local
+before = common.conf
+
+[Definition]
+
+_daemon = sshd
+
+failregex = ^%(__prefix_line)sDid not receive identification string from <HOST>\s*$
+
+ignoreregex =.
+
+[Init]
+
+journalmatch = _SYSTEMD_UNIT=sshd.service + _COMM=sshd
--- a/root/etc/fail2ban/filter.d/wordpress-hard.conf
+++ b/root/etc/fail2ban/filter.d/wordpress-hard.conf
@@ -0,0 +1,28 @@
+# Fail2Ban filter for WordPress hard failures
+#
+
+[INCLUDES]
+
+before = common.conf
+
+[Definition]
+
+_daemon = (?:wordpress|wp)
+
+failregex = ^%(__prefix_line)sSpam comment \d+ from <HOST>$
+            ^%(__prefix_line)sAuthentication attempt for unknown user .* from <HOST>$
+            ^%(__prefix_line)sXML-RPC multicall authentication failure from <HOST>$
+            ^%(__prefix_line)sBlocked user enumeration attempt from <HOST>$
+            ^%(__prefix_line)sBlocked authentication attempt for .* from <HOST>$
+            ^%(__prefix_line)sAuthentication attempt for unknown user .* from <HOST>$
+            ^%(__prefix_line)sREST authentication attempt for unknown user .* from <HOST>$
+            ^%(__prefix_line)sPingback error .* generated from <HOST>$
+            ^%(__prefix_line)sXML-RPC authentication attempt for unknown user .* from <HOST>$
+
+ignoreregex =
+
+# DEV Notes:
+# Requires the 'WP fail2ban' plugin:
+# https://wordpress.org/plugins/wp-fail2ban/
+#
+# Author: Charles Lecklider
--- a/root/etc/fail2ban/filter.d/wordpress-soft.conf
+++ b/root/etc/fail2ban/filter.d/wordpress-soft.conf
@@ -0,0 +1,34 @@
+# Fail2Ban configuration file
+#
+# Author: Charles Lecklider
+#
+
+[INCLUDES]
+
+# Read common prefixes. If any customizations available -- read them from
+# common.local
+before = common.conf
+
+
+[Definition]
+
+_daemon = (?:wordpress|wp)
+
+# Option:  failregex
+# Notes.:  regex to match the password failures messages in the logfile. The
+#          host must be matched by a group named "host". The tag "<HOST>" can
+#          be used for standard IP/hostname matching and is only an alias for
+#          (?:::f{4,6}:)?(?P<host>[\w\-.^_]+)
+# Values:  TEXT
+#
+failregex = ^%(__prefix_line)sEmpty username from <HOST>$
+            ^%(__prefix_line)sAuthentication failure for .* from <HOST>$
+            ^%(__prefix_line)sXML-RPC authentication failure from <HOST>$
+            ^%(__prefix_line)sREST authentication failure for .* from <HOST>$
+            ^%(__prefix_line)sXML-RPC authentication failure for .* from <HOST>$
+
+# Option:  ignoreregex
+# Notes.:  regex to ignore. If this regex matches, the line is ignored.
+# Values:  TEXT
+#
+ignoreregex =
--- a/root/sbin/e-smith/smeserver-fail2ban
+++ b/root/sbin/e-smith/smeserver-fail2ban
@@ -0,0 +1,132 @@
+#!/usr/bin/perl -w
+
+use strict;
+use warnings;
+use esmith::ConfigDB;
+use Getopt::Long;
+
+our $f2bdb = esmith::ConfigDB->open('fail2ban') || esmith::ConfigDB->create('fail2ban');
+our $c = esmith::ConfigDB->open_ro;
+our %opts;
+
+
+sub usage(){
+  print<<"EOF";
+
+Usage: $0 --host=<ip> [--unban] [--protocol=tcp|udp|icmp|all] [--port=<port number>] [--bantime]
+
+  * --host must specify a valid IPv4 adress in the form 10.11.12.13 or an IPv4 subnet in the form 10.11.12.0/24
+  * --protocol can be used to specify the protocol to block. Only tcp, udp, icmp and all are valid (default is all)
+  * --port can be used to specify the port(s) to block. Only valid for tcp and udp. You can also specify a range
+    of port like 10000:20000. You can also specify several ports or range of port separated by a comma
+  * if --unban is specified, the given host will be removed from the blacklist
+    default is to add to the blacklist instead
+  * --bantime can be used to specify how long the ban should be (in seconds)
+
+EOF
+}
+
+# Check if port is valid
+sub is_valid_port($){
+  my $ports = shift;
+  my $ret = 0;
+  foreach my $port (split /,/, $ports){
+    if ($port =~ m/^(\d+):(\d+)$/){
+      $ret = 1 if ($1 >= 0 &&
+                   $1 < 65636 &&
+                   $2 >= 0 &&
+                   $2 < 65636);
+    }
+    else{
+      $ret = 1 if ($port > 0 &&
+                   $port < 65636);
+    }
+  }
+  return $ret;
+}
+
+# Generate a random uniq ID
+sub generate_uniq_id(){
+  my @chars = ('a'..'z','0'..'9');
+  my $id = '';
+  my $round = 0;
+  foreach (1..10){
+    foreach (1..15){
+      $id .= $chars[rand @chars];
+    }
+    my $eid = $f2bdb->get($id);
+    last unless ($eid);
+  }
+  die "Couldn't generate a valid uniq ID\n"
+    if ($id eq '');
+  return $id;
+}
+
+my $f2b = $c->get('fail2ban') ||
+  die "fail2ban service not found in the configuration database\n";
+
+# default is to ban a host
+$opts{unban} = '0';
+$opts{bantime} = $f2b->prop('BanTime') || '1800';
+
+GetOptions(
+    "host=s"     => \$opts{host},
+    "unban"      => \$opts{unban},
+    "protocol=s" => \$opts{proto},
+    "port=s"     => \$opts{port},
+    "bantime=s"  => \$opts{bantime}
+);
+
+# special "undef" value for port and proto
+undef $opts{proto} if ($opts{proto} eq 'undef');
+undef $opts{port} if ($opts{port} eq 'undef');
+$opts{bantime} = ($f2b->prop('BanTime') || '1800')
+    if ($opts{bantime} eq 'undef');
+
+# Check options are valid
+
+# host is required
+my @req = qw(host);
+foreach (@req){
+  usage() && die unless (defined $opts{$_});
+}
+
+# host must look like an IP address or IP with subnet
+usage() && die 
+  unless ($opts{host} =~ m'^([01]?\d\d?|2[0-4]\d|25[0-5])(?:\.[01]?\d\d?|\.2[0-4]\d|\.25[0-5]){3}(?:/[0-2]\d|/3[0-2])?$');
+
+# protocol must can only be undefined, tcp, udp or icmp
+usage() && die
+  if ($opts{proto} && $opts{proto} !~ m/^tcp|udp|icmp|all$/);
+
+# port must be a valid port number, and is only valid for tcp and udp
+usage && die
+  if ($opts{port} && (($opts{proto} && $opts{proto} !~ m/^tcp|udp$/) || !is_valid_port($opts{port})));
+
+if ($opts{unban}){
+  foreach ($f2bdb->get_all_by_prop(Host => $opts{host})){
+    my $proto = $_->prop('Protocol') || '';
+    my $port = $_->prop('Port') || '';
+    next if ($opts{proto} && $proto ne $opts{proto});
+    next if ($opts{port} && $port ne $opts{port} && $proto =~ m/^tcp|udp$/);
+    $_->delete();
+  }
+}
+else{
+  my $id = generate_uniq_id();
+  my %props;
+  $props{'type'} = 'ban';
+  $props{'Host'} = $opts{host};
+  $props{'Protocol'} = $opts{proto}
+    if ($opts{proto});
+  $props{'Port'} = $opts{port}
+    if ($opts{port});
+  $props{'BanTimestamp'} = time();
+  $props{'UnbanTimestamp'} = time()+$opts{bantime};
+  $f2bdb->new_record($id, \%props);
+}
+
+die "An error occured while updating the firewall rules"
+  unless (system("/sbin/e-smith/signal-event fail2ban-update") == 0);
+
+exit(0);
--- a/root/usr/bin/sfail2ban
+++ b/root/usr/bin/sfail2ban
@@ -0,0 +1,6 @@
+#!/bin/bash
+for SERVI in $(fail2ban-client status|grep 'Jail list'|cut -d':' -f2|sed 's/, / /g'| sed -e 's/^[ \t]*//')
+do
+fail2ban-client status $SERVI |grep -E 'IP list|Status for the jail'|sed 'N;s/\n/:/'|cut -d: -f2,4
+done
+
--- a/root/usr/share/perl5/vendor_perl/esmith/FormMagick/Panel/fail2ban.pm
+++ b/root/usr/share/perl5/vendor_perl/esmith/FormMagick/Panel/fail2ban.pm
@@ -0,0 +1,461 @@
+#!/usr/bin/perl -w
+
+package    esmith::FormMagick::Panel::fail2ban;
+
+use strict;
+use esmith::ConfigDB;
+use esmith::FormMagick;
+use esmith::util;
+use esmith::cgi;
+use File::Basename;
+use Exporter;
+use Carp;
+use Data::Validate::IP;
+
+our @ISA = qw(esmith::FormMagick Exporter);
+
+our @EXPORT = qw(get_value get_prop change_settings RemoveIP add_new_valid_from);
+
+our $VERSION = sprintf '%d.%03d', q$Revision: 1.1 $ =~ /: (\d+).(\d+)/;
+our $db = esmith::ConfigDB->open
+    || warn "Couldn't open configuration database (permissions problems?)";
+my $scriptname = basename($0);
+
+#TODO 
+#- translation
+#- userpanel without settings
+
+my %defaultval=('FilterLocalNetworks'=> "enabled",
+	'FilterValidRemoteHosts'=> "enabled",
+	"Mail" => "enabled",
+        "BanTime" => '1800',
+        "FindTime" => '900',
+        "MaxRetry" =>  '3',
+        "sshd" => 'enabled',
+        "qpsmtpd" => 'enabled',
+        "dovecot" => 'enabled',
+	"httpd-e-smith" => 'enabled',
+        "ftp" => 'enabled',
+	"lemonldap" => 'enabled',
+        "ejabberd"  => 'enabled',
+        "sogod"  => 'disabled',
+        "wordpress" => 'disabled',
+         
+ ) ;
+
+sub new {
+    shift;
+    my $self = esmith::FormMagick->new();
+    $self->{calling_package} = (caller)[0];
+    bless $self;
+    return $self;
+}
+
+sub get_prop
+{
+    my $fm   = shift;
+    my $item = shift;
+    my $prop = shift;
+    my $value = $db->get_prop($item, $prop) || '';
+    if ( $value eq "" && exists($defaultval{$prop})  && $item eq "fail2ban")
+	{
+		$value=$defaultval{$prop};
+	}
+    elsif ( $value eq "" && exists($defaultval{$item}) && $prop eq "Fail2Ban" && $item ne "fail2ban" )
+        {
+                $value=$defaultval{$item};
+        }
+    return $value;
+}
+
+sub get_value {
+    my $fm = shift;
+    my $item = shift;
+    return ($db->get($item)->value());
+}
+
+sub ip_number_or_blank
+{
+    my $self = shift;
+    my $ip = shift;
+
+    if (!defined($ip) || $ip eq "")
+    {
+        return 'OK';
+    }
+    return CGI::FormMagick::Validator::ip_number($self, $ip);
+}
+
+sub subnet_mask_bit 
+{
+    my ($self, $mask) = @_;
+    my @allowed = (8,9,12,14,16,17,20,22,24,25,28,30,32);
+#    if ($self->ip_number_or_blank($mask) eq 'OK')
+    if ( !defined($mask) || $mask eq "" || grep( /^$mask$/, @allowed ) )
+    {
+        return "OK";
+    }
+    return "INVALID_SUBNET_MASK";
+}
+
+sub validate_network_and_mask
+{
+  my $self = shift;
+  my $mask = shift || "";
+
+  my $net = $self->cgi->param('ip') || "";
+  if ($net xor $mask)
+  {
+    return $self->localise('ERR_INVALID_PARAMS');
+  }
+  return 'OK';
+}
+
+
+
+sub _get_valid_from
+{
+    my $self = shift;
+
+    my $rec = $db->get('fail2ban');
+    return undef unless($rec);
+    my @vals = (split ',', ($rec->prop('IgnoreIP') || ''));
+    return @vals;
+}
+
+sub ip_sort(@)
+{
+    return esmith::util::IPquadToAddr($a) <=> esmith::util::IPquadToAddr($b);
+}
+
+sub show_config_link
+{
+    my $self = shift;
+    my $q = $self->{cgi};
+
+    print '<tr><td colspan=2>',"<a href=\"$scriptname?page=0&page_stack=&Next=Next&wherenext=Config\">",
+	$q->p($self->localise('CONFIG')),'</a></td></tr>';
+    return '';
+}
+
+sub show_valid_from_list
+{
+    my $self = shift;
+    my $q = $self->{cgi};
+
+    print '<tr><td colspan=2>',$q->p($self->localise('VALIDFROM_DESC')),'</td></tr>';
+
+    my @vals = $self->_get_valid_from();
+    if (@vals)
+    {
+        print '<tr><td colspan=2>',
+              $q->start_table({class => "sme-border"}),"\n";
+        print $q->Tr(
+                esmith::cgi::genSmallCell($q, $self->localise('NETWORK'),"header"),
+                esmith::cgi::genSmallCell($q, $self->localise('REMOVE'),"header"));
+	my @vals_sorted= sort ip_sort @vals;
+        my @cbGroup = $q->checkbox_group(-name => 'validFromRemove',
+                -values => [@vals_sorted], -labels => { map {$_ => ''} @vals_sorted });
+        foreach my $val (@vals_sorted)
+        {
+            print $q->Tr(
+                    esmith::cgi::genSmallCell($q, $val, "normal"),
+                    esmith::cgi::genSmallCell($q, shift(@cbGroup),
+                        "normal"));
+        }
+        print '</table></td></tr>';
+    }
+    else
+    {
+        print $q->Tr($q->td($q->b($self->localise('NO_ENTRIES_YET'))));
+    }
+    return '';
+}
+
+sub show_current_deny
+{
+    my $self = shift;
+    my $q = $self->{cgi};
+
+    print '<tr><td colspan=2>',$q->p($self->localise('CURRENT_DENY_DESC')),'</td></tr>';
+
+    my @strvals = `/usr/bin/sfail2ban`;
+    
+    if (@strvals)
+    {
+        print '<tr><td colspan=2>',
+              $q->start_table({class => "sme-border"}),"\n";
+        print $q->Tr(
+                esmith::cgi::genSmallCell($q, $self->localise('IP_ADDRESS'),"header"),
+                esmith::cgi::genSmallCell($q, $self->localise('JAIL'),"header"),
+		esmith::cgi::genSmallCell($q, $self->localise('ACTION'),"header"));
+	foreach my $sval (@strvals)
+	{
+	    my @ssval= split(':',$sval);
+	    my $curjail=$ssval[0];
+	    my @ssvalip = split(' ',$ssval[1]);
+	    foreach my $sssval (@ssvalip)
+	    {
+	    my $ip=$sssval;
+            my $action3 ="<a href=\"$scriptname?page=0&page_stack=&Next=Next&action=RemoveIP&IP=$ip&jail=$curjail&wherenext=Second\">".$self->localise('REMOVE')."</a>" .
+                          " <a href=\"$scriptname?page=0&page_stack=&Next=Next&action=RemoveIP&IP=$ip&jail=$curjail&wherenext=Second&Whitelist=true\">".$self->localise('WHITELIST')."</a>" ;
+ 
+            	print $q->Tr(
+                    esmith::cgi::genSmallCell($q, $ip, "normal"),
+                    esmith::cgi::genSmallCell($q, $curjail, "normal"),
+                    esmith::cgi::genSmallCell($q, $action3, "normal"));
+	    }
+
+
+	}
+        print '</table></td></tr>';
+    }
+    else
+    {
+        print $q->Tr($q->td($q->b($self->localise('NO_ENTRIES_YET'))));
+    }
+    return '';
+}
+
+sub add_new_valid_from
+{
+    my $self = shift;
+    my $q = $self->{cgi};
+
+    my $ip = $q->param('ip');
+    my $bits = $q->param('bits');
+    # do nothing if no ip was added
+    return 1 unless ($ip);
+
+    my $rec = $db->get('fail2ban');
+    unless ($rec)
+    {
+        return $self->error('ERR_NO_RECORD');
+    }
+
+    my $prop = $rec->prop('IgnoreIP') || '';
+
+    my @vals = split /,/, $prop;
+    return $self->error('ERR_EXISTS') if (grep /^$ip\/$bits$/, @vals); # already have this entry
+
+        if ($prop ne '')
+        {
+            $prop .= ",$ip/$bits";
+        }
+        else
+        {
+            $prop = "$ip/$bits";
+        }
+    $rec->set_prop('IgnoreIP', $prop);
+    $q->delete('ip');
+    $q->delete('bits');
+    return 1
+}
+
+sub remove_valid_from
+{
+    my $self = shift;
+    my $q = $self->{cgi};
+
+    my @remove = $q->param('validFromRemove');
+    my @vals = $self->_get_valid_from();
+
+    foreach my $entry (@remove)
+    {
+        return undef unless $entry;
+
+        unless (@vals)
+        {
+            print STDERR "ERROR: unable to load IgnoreIP property from conf db\n";
+            return undef;
+        }
+
+        @vals = (grep { $entry ne $_ } @vals);
+    }
+
+    my $prop;
+    if (@vals)
+    {
+        $prop = join ',',@vals;
+    }
+    else
+    {
+        $prop = '';
+    }
+    $db->get('fail2ban')->set_prop('IgnoreIP', $prop);
+    $q->delete('validFromRemove');
+
+    return 1;
+}
+
+sub change_whitelist {
+    my ($fm) = @_;
+    my $q = $fm->{'cgi'};
+
+    my %conf;
+
+    # Don't process the form unless we clicked the Save button. The event is
+    # called even if we chose the Remove link or the Add link.
+    return unless($q->param('Next') eq $fm->localise('SAVE'));
+    my $ip = ($q->param ('ip') || '');
+    return '' unless $fm->add_new_valid_from;
+    return '' unless $fm->remove_valid_from;
+
+    unless ( system( "/sbin/e-smith/signal-event", "fail2ban-conf" ) == 0 )
+    {
+        $fm->error('ERROR_UPDATING');
+        return undef;
+    }
+
+    $fm->success('SUCCESS');
+}
+
+sub change_settings {
+    my ($fm) = @_;
+    my $q = $fm->{'cgi'};
+
+    my %conf;
+
+    # Don't process the form unless we clicked the Save button. The event is
+    # called even if we chose the Remove link or the Add link.
+    return unless($q->param('Next') eq $fm->localise('SAVE'));
+
+    my $ip = ($q->param ('ip') || '');
+    my $status = ($q->param ('status') || 'status');
+    my $FilterLocalNetworks = ($q->param ('FilterLocalNetworks') || "enabled");
+    my $FilterValidRemoteHosts= ($q->param ('FilterValidRemoteHosts') || "enabled");
+    my $Mail= ($q->param ("Mail") || "enabled");
+    my $BanTime= ($q->param ("BanTime") || '1800');
+    my $FindTime= ($q->param ("FindTime") || '900');
+    my $MaxRetry= ($q->param ("MaxRetry") ||  '3');
+    # those are stored in a different key dedicated to the service
+    my %services;
+    $services{'sshd'}= ($q->param ("sshd") ||'enabled');
+    $services{'qpsmtpd'}= ($q->param ("qpsmtpd") ||'enabled');
+    $services{'dovecot'}= ($q->param ("dovecot") ||'enabled');
+    $services{'httpd-e-smith'}= ($q->param ("httpd-e-smith") ||'enabled');
+    $services{'ftp'}= ($q->param ("ftp") ||'enabled');
+    $services{'lemonldap'}= ($q->param ("lemonldap") ||'enabled');
+    $services{'ejabberd'}= ($q->param ("ejabberd" ) ||'enabled');
+    $services{'sogod'}= ($q->param ("sogod" ) ||'enabled');
+    $services{'wordpress'}= ($q->param ("wordpress") ||'enabled');
+
+
+    #------------------------------------------------------------
+    # Looks good; go ahead and change the access.
+    #------------------------------------------------------------
+
+    my $rec = $db->get('fail2ban');
+    if ($rec)
+    {
+    	$rec->set_prop('status', $status);
+	# unless prop empty and value eq default
+	$rec->set_prop('FilterLocalNetworks', $FilterLocalNetworks) unless ( ! $db->get_prop('fail2ban','FilterLocalNetworks') && $FilterLocalNetworks eq $defaultval{'FilterLocalNetworks'}  );
+	$rec->set_prop('FilterValidRemoteHosts', $FilterValidRemoteHosts) unless ( ! $db->get_prop('fail2ban','FilterValidRemoteHosts') && $FilterValidRemoteHosts  eq $defaultval{'FilterValidRemoteHosts'}  );
+	$rec->set_prop('Mail', $Mail) unless ( ! $db->get_prop('fail2ban','Mail') && $Mail eq $defaultval{'Mail'}  );
+	$rec->set_prop('BanTime', $BanTime) unless ( ! $db->get_prop('fail2ban','BanTime') && $BanTime eq $defaultval{'BanTime'}  );
+        $rec->set_prop('FindTime', $FindTime) unless ( ! $db->get_prop('fail2ban','FindTime') && $FindTime eq $defaultval{'FindTime'}  );
+        $rec->set_prop('MaxRetry', $MaxRetry) unless ( ! $db->get_prop('fail2ban','MaxRetry') && $MaxRetry eq $defaultval{'MaxRetry'}  );
+    }
+    # for the 9 services update unless key does not exist and property does not exist and value eq default
+	foreach my $key (keys %services)
+    {
+        if ($key eq "wordpress")
+        {
+                $rec = $db->get('fail2ban');
+                my $getprop = $db->get_prop('fail2ban',$key) || "";
+                $rec->set_prop($key, $services{$key}  ) unless ( ! $rec || (! $db->get_prop('fail2ban', $key) && $services{$key} eq $defaultval{$key} )  );
+        }
+        else
+        {
+                $rec = $db->get($key);
+                my $getprop = $db->get_prop($key,'Fail2Ban') || "";
+                $rec->set_prop('Fail2Ban', $services{$key}  ) unless ( ! $rec || (! $db->get_prop($key,'Fail2Ban') && $services{$key} eq $defaultval{$key} )  );
+        }
+    }
+# this seems to prevent reload of service if we update something and remove or add an ip...
+#    return '' unless $fm->add_new_valid_from;
+#    return '' unless $fm->remove_valid_from;
+    
+    unless ( system( "/sbin/e-smith/signal-event", "fail2ban-update" ) == 0 )
+    {
+	$fm->error('ERROR_UPDATING');
+	return undef;
+    }
+
+    unless ( system( "/sbin/e-smith/signal-event", "fail2ban-conf" ) == 0 )
+    {
+        $fm->error('ERROR_UPDATING');
+        return undef;
+    }
+	
+    if ( $rec->prop('status') eq 'disabled' )
+    {
+        unless ( `/usr/bin/systemctl stop fail2ban`  )
+        {
+            $fm->error('ERROR_STOPPING');
+            return undef;
+        }
+    }
+    
+    $fm->success('SUCCESS');
+}
+
+# validate subnet
+
+
+
+# RemoveIP after validation
+sub RemoveIP {
+    my $fm = shift;
+    my $q = $fm->{'cgi'};
+    my %conf;
+    my $ip = ($q->param('IP') || ''); 
+    my $whitelist = ($q->param('Whitelist'))? "true" : '';
+    #check ip
+    my $validator=Data::Validate::IP->new;
+
+    unless ($validator->is_ipv4($ip))
+      	{
+	   $fm->error('ERROR_STOPPING');
+	   return undef;
+	}
+    $ip = $validator->is_ipv4($ip);
+    # validate and untaint jail
+    my $jail = ($q->param('jail') || '');
+    # could be [a-zA-Z0-9_\-]
+    $jail = $jail =~ /([a-zA-Z0-9_\-]+)/ ? $1 : undef; 
+	$fm->error('ERROR_UPDATING') unless $jail;
+	return undef unless $jail;
+    unless ( system( "/usr/bin/fail2ban-client set $jail unbanip  $ip ".' >/dev/null 2>&1'  ) == 0 )
+    	{
+           $fm->error('ERROR_UPDATING');
+           return undef;
+    	}
+    if ($whitelist ne "" ) {
+	# add $ip to whitelist for the current $jail
+	warn "/sbin/e-smith/db configuration setprop fail2ban IgnoreIP  `/sbin/e-smith/db configuration getprop fail2ban IgnoreIP`,$ip/32";
+	unless ( system( "/sbin/e-smith/db configuration setprop fail2ban  IgnoreIP  `/sbin/e-smith/db configuration getprop fail2ban IgnoreIP`,$ip/32 ".' >/dev/null 2>&1'  ) == 0 
+	&& system( "/usr/bin/fail2ban-client reload ".' >/dev/null 2>&1'  ) == 0 
+	)
+        {
+           $fm->error('ERROR_UPDATING_WHITE');
+           return undef;
+        }
+	
+    	$fm->success($fm->localise('SUCCESS_IP_WHITE').": $ip",'First');
+    }
+    else
+    {
+        $fm->success($fm->localise('SUCCESS_IP').": $ip",'First');
+    }
+}
+
+sub back {
+    my $fm = shift;
+    my $q = $fm->{'cgi'};
+    print "<a href='$scriptname'>".$fm->localise('Back')."</a>";
+return;
+}
+
+1;
--- a/root/usr/share/smanager/lib/SrvMngr/Controller/Fail2ban.pm
+++ b/root/usr/share/smanager/lib/SrvMngr/Controller/Fail2ban.pm
@@ -0,0 +1,455 @@
+package SrvMngr::Controller::Fail2ban;
+
+#----------------------------------------------------------------------
+# heading     : Network
+# description : Fail2Ban
+# navigation  : 6000 800
+
+# name : fail2ban,  method : get,  url : /fail2ban,   ctlact : fail2ban#main
+# name : fail2banu, method : post, url : /fail2ban,   ctlact : fail2ban#do_action
+# name : fail2banr, method : get,  url : /fail2ban2,  ctlact : fail2ban#do_action_get
+#
+# routes : end
+#----------------------------------------------------------------------
+
+use strict;
+use warnings;
+use Mojo::Base 'Mojolicious::Controller';
+
+use Locale::gettext;
+use SrvMngr::I18N;
+
+use Data::Validate::IP;
+
+#use esmith::FormMagick::Panel::fail2ban;
+#    qw( get_value get_prop change_settings RemoveIP );
+
+use SrvMngr qw( theme_list init_session ip_number );
+
+our $cdb = esmith::ConfigDB->open() or die "Couldn't open ConfigDB\n";
+
+my %defaultval=('FilterLocalNetworks'=> "enabled",
+	'FilterValidRemoteHosts'=> "enabled",
+	"Mail" => "enabled",
+        "BanTime" => '1800',
+        "FindTime" => '900',
+        "MaxRetry" =>  '3',
+        "sshd" => 'enabled',
+        "qpsmtpd" => 'enabled',
+        "dovecot" => 'enabled',
+	"httpd-e-smith" => 'enabled',
+        "ftp" => 'enabled',
+	"lemonldap" => 'enabled',
+        "ejabberd"  => 'enabled',
+        "sogod"  => 'disabled',
+        "wordpress" => 'disabled',
+        "smanager" => 'enabled',
+);
+
+
+sub main {
+
+    my $c = shift;
+    $c->app->log->info($c->log_req);
+
+    my %f2b_datas = ();
+    my $title = $c->l('f2b_FORM_TITLE');
+
+    $f2b_datas{'status'} = get_prop('fail2ban', 'status');
+    $f2b_datas{'filterlocalnetworks'} = get_prop('fail2ban', 'FilterLocalNetworks');
+    $f2b_datas{'filtervalidremotehosts'} = get_prop('fail2ban', 'FilterValidRemoteHosts');
+    $f2b_datas{'mail'} = get_prop('fail2ban', 'Mail');
+    $f2b_datas{'bantime'} = get_prop('fail2ban', 'BanTime');
+    $f2b_datas{'findtime'} = get_prop('fail2ban', 'FindTime');
+    $f2b_datas{'maxretry'} = get_prop('fail2ban', 'MaxRetry');
+    $f2b_datas{'wordpress'} = get_prop('fail2ban', 'wordpress');
+
+    $f2b_datas{'sshd'} = get_prop('sshd', 'Fail2Ban');
+    $f2b_datas{'qpsmtpd'} = get_prop('qpsmtpd', 'Fail2Ban');
+    $f2b_datas{'dovecot'} = get_prop('dovecot', 'Fail2Ban');
+    $f2b_datas{'httpd-e-smith'} = get_prop('httpd-e-smith', 'Fail2Ban');
+    $f2b_datas{'ftp'} = get_prop('sshd', 'Fail2Ban');
+    $f2b_datas{'lemonldap'} = get_prop('lemonldap', 'Fail2Ban');
+    $f2b_datas{'ejabberd'} = get_prop('ejabberd', 'Fail2Ban');
+    $f2b_datas{'sogod'} = get_prop('sogod', 'Fail2Ban');
+    $f2b_datas{'smanager'} = get_prop('smanager', 'Fail2Ban');
+
+    $c->stash( title => $title, f2b_datas => \%f2b_datas);
+    $c->render('fail2ban');
+};
+
+
+sub do_action {
+
+    my $c = shift;
+    $c->app->log->info($c->log_req);
+
+    my $rt = $c->current_route;
+
+    my %f2b_datas = ();
+    my $title = $c->l('f2b_FORM_TITLE');
+
+    my ($res, $result) = '';
+
+    $f2b_datas{status}	= $c->param('Status');
+    my $action = ( $c->param('action') || '' );
+    $f2b_datas{ip}	= $c->param('Ip');
+    $f2b_datas{bits}	= $c->param('Bits');
+
+    # controls
+    $res = ip_number_or_blank( $c, $f2b_datas{ip} );
+    $result .= $res . " <br>" if ( $res ne 'OK' );
+
+    $res = subnet_mask_bit( $c, $f2b_datas{bit} );
+    $result .= $res . " <br>" if ( $res ne 'OK' );
+
+    $res = validate_network_and_mask( $c, $f2b_datas{ip}, $f2b_datas{bits} );
+    $result .= $res . " <br>" if ( $res ne 'OK' );
+
+    #$result .= 'Blocked for testing d_a ! No updates for now '; # if $action;
+
+    $res = '';
+    if ( ! $result ) {
+        $res = $c->do_changes();
+        $result .= $res unless $res eq 'OK';
+        if ( ! $result ) { 
+	    $result = $c->l('f2b_SUCCESS'); 
+        }
+    }
+
+    $c->stash( title => $title, f2b_datas => \%f2b_datas );
+    if ($res ne 'OK') {
+	$c->stash( error => $result );
+	return $c->render('fail2ban');
+    }
+
+    my $message = 'fail2ban updates DONE';
+    $c->app->log->info($message);
+    $c->flash( success => $result );
+    #$c->flash( error => " No changes applied !!" );
+
+    #return to 'fail2ban' route !!!
+    $c->redirect_to('/fail2ban');
+
+};
+
+
+sub do_action_get {
+
+    my $c = shift;
+    $c->app->log->info($c->log_req);
+
+    my ($res, $result) = '';
+
+    # controls
+
+    my $action = ($c->param('action') || '');
+    $result .= $c->l('f2b_ERROR_UPDATING') . " action: $action <br>"
+	unless ($action eq 'RemoveIP');
+
+    my $ip = ($c->param('IP') || ''); 
+    my $whitelist = ($c->param('Whitelist'))? 'true' : 'false';
+
+    #check ip
+    my $validator=Data::Validate::IP->new;
+    $result .= $c->l('f2b_ERROR_STOPPING') . " IP: $ip <br>"
+	unless ($validator->is_ipv4($ip));
+    $ip = $validator->is_ipv4($ip);
+
+    # validate and untaint jail
+    my $jail = ($c->param('Jail') || '');
+    # could be [a-zA-Z0-9_\-]
+    $jail = $jail =~ /([a-zA-Z0-9_\-]+)/ ? $1 : undef; 
+    $result .= $c->l('f2b_ERROR_UPDATING') . " jail: $jail <br>"
+	unless $jail;
+
+    #$result .= 'Blocked for testing d_a_g ! No updates for now '; # if $action;
+
+    $res = '';
+    if ( ! $result ) {
+        $res = $c->RemoveIP( $ip, $whitelist, $jail );
+        $result .= $res unless $res eq 'OK';
+        if ( ! $result ) { 
+	    if ($whitelist eq "true" ) {
+	    $result = $c->l('f2b_SUCCESS_IP_WHITE')." : $ip";
+	    } else {
+	    $result = $c->l('f2b_SUCCESS_IP')." : $ip";
+	    }
+        }
+    }
+
+    if ($res ne 'OK') {
+	$c->flash( error => $result );
+    } else {
+        my $message = "fail2ban removeip $ip DONE";
+	$c->app->log->info($message);
+	$c->flash( success => $result );
+    }
+
+    $c->redirect_to('/fail2ban');
+
+};
+
+
+sub do_changes {
+
+    my $c = shift;
+    my %conf;
+
+    # Don't process the form unless we clicked the Save button. The event is
+    # called even if we chose the Remove link or the Add link.
+
+    my $ip = ($c->param ('Ip') || '');
+    my $status = ($c->param ('Status') || 'status');
+    my $FilterLocalNetworks = ($c->param ('FilterLocalNetworks') || "enabled");
+    my $FilterValidRemoteHosts= ($c->param ('FilterValidRemoteHosts') || "enabled");
+    my $Mail= ($c->param ("Mail") || "enabled");
+    my $BanTime= ($c->param ("BanTime") || '1800');
+    my $FindTime= ($c->param ("FindTime") || '900');
+    my $MaxRetry= ($c->param ("MaxRetry") ||  '3');
+
+    # those are stored in a different key dedicated to the service
+    my %services;
+    $services{'sshd'}= ($c->param ("Sshd") ||'enabled');
+    $services{'qpsmtpd'}= ($c->param ("Qpsmtpd") ||'enabled');
+    $services{'dovecot'}= ($c->param ("Dovecot") ||'enabled');
+    $services{'httpd-e-smith'}= ($c->param ("Httpd-e-smith") ||'enabled');
+    $services{'ftp'}= ($c->param ("Ftp") ||'enabled');
+    $services{'lemonldap'}= ($c->param ("Lemonldap") ||'enabled');
+    $services{'ejabberd'}= ($c->param ("Ejabberd" ) ||'enabled');
+    $services{'sogod'}= ($c->param ("Sogod" ) ||'enabled');
+    $services{'wordpress'}= ($c->param ("Wordpress") ||'enabled');
+    $services{'smanager'}= ($c->param ("Smanager") ||'enabled');
+
+
+    #------------------------------------------------------------
+    # Looks good; go ahead and change the access.
+    #------------------------------------------------------------
+
+    my $rec = $cdb->get('fail2ban');
+    if ($rec) {
+    	$rec->set_prop('status', $status);
+	# unless prop empty and value eq default
+	$rec->set_prop('FilterLocalNetworks', $FilterLocalNetworks) 
+	    unless ( ! $cdb->get_prop('fail2ban','FilterLocalNetworks') 
+		&& $FilterLocalNetworks eq $defaultval{'FilterLocalNetworks'}  );
+	$rec->set_prop('FilterValidRemoteHosts', $FilterValidRemoteHosts) 
+	    unless ( ! $cdb->get_prop('fail2ban','FilterValidRemoteHosts') 
+		&& $FilterValidRemoteHosts  eq $defaultval{'FilterValidRemoteHosts'}  );
+	$rec->set_prop('Mail', $Mail)
+	     unless ( ! $cdb->get_prop('fail2ban','Mail') && $Mail eq $defaultval{'Mail'}  );
+	$rec->set_prop('BanTime', $BanTime) 
+	    unless ( ! $cdb->get_prop('fail2ban','BanTime') && $BanTime eq $defaultval{'BanTime'}  );
+        $rec->set_prop('FindTime', $FindTime) 
+    	    unless ( ! $cdb->get_prop('fail2ban','FindTime') && $FindTime eq $defaultval{'FindTime'}  );
+        $rec->set_prop('MaxRetry', $MaxRetry) 
+    	    unless ( ! $cdb->get_prop('fail2ban','MaxRetry') && $MaxRetry eq $defaultval{'MaxRetry'}  );
+    }
+    # for the 9 services update unless key does not exist and property does not exist and value eq default
+    foreach my $key (keys %services) {
+        if ($key eq "wordpress") {
+                $rec = $cdb->get('fail2ban');
+                my $getprop = $cdb->get_prop('fail2ban',$key) || "";
+                $rec->set_prop($key, $services{$key}  ) 
+            	    unless ( ! $rec || (! $cdb->get_prop('fail2ban', $key) && $services{$key} eq $defaultval{$key} )  );
+        } else {
+                $rec = $cdb->get($key);
+                my $getprop = $cdb->get_prop($key,'Fail2Ban') || "";
+                $rec->set_prop('Fail2Ban', $services{$key}  ) 
+            	    unless ( ! $rec || (! $cdb->get_prop($key,'Fail2Ban') && $services{$key} eq $defaultval{$key} )  );
+        }
+    }
+
+# ?? this seems to prevent reload of service if we update something and remove or add an ip... ??
+    $c->add_new_valid_from;
+    $c->remove_valid_from;
+
+    unless ( system( "/sbin/e-smith/signal-event", "fail2ban-update" ) == 0 ) {
+	return $c->l('f2b_ERROR_UPDATING');
+    }
+
+    unless ( system( "/sbin/e-smith/signal-event", "fail2ban-conf" ) == 0 ) {
+	return $c->l('f2b_ERROR_UPDATING');
+    }
+
+    if ( $rec->prop('status') eq 'disabled' ) {
+        unless ( `/etc/init.d/fail2ban stop`  ) {
+	    return $c->l('f2b_ERROR_STOPPING');
+        }
+    }
+
+    return 'OK';
+}
+
+
+# RemoveIP after validation
+sub RemoveIP {
+
+    my ( $c, $ip, $whitelist, $jail ) = @_;
+
+    unless ( system( "/usr/bin/fail2ban-client set $jail unbanip  $ip ".' >/dev/null 2>&1'  ) == 0 ) {
+           return $c->l('f2b_ERROR_UPDATING');
+    }
+
+    if ($whitelist eq 'true' ) {
+	# add $ip to whitelist for the current $jail
+	warn "/sbin/e-smith/db configuration setprop fail2ban IgnoreIP  `/sbin/e-smith/db configuration getprop fail2ban IgnoreIP`,$ip/32";
+	unless ( system( "/sbin/e-smith/db configuration setprop fail2ban  IgnoreIP  `/sbin/e-smith/db configuration getprop fail2ban IgnoreIP`,$ip/32 ".' >/dev/null 2>&1'  ) == 0 
+	&& system( "/usr/bin/fail2ban-client reload ".' >/dev/null 2>&1'  ) == 0 
+	) {
+           return $c->l('f2b_ERROR_UPDATING_WHITE');
+        }
+    }
+
+    return 'OK';
+
+}
+
+
+sub add_new_valid_from {
+
+    my $c = shift;
+
+    my $ip = $c->param('Ip');
+    my $bits = $c->param('Bits');
+
+    # do nothing if no ip was added
+    return 1 unless ($ip);
+
+    my $rec = $cdb->get('fail2ban');
+    return $c->l('f2b_ERR_NO_RECORD') unless $rec;
+
+    my $prop = $rec->prop('IgnoreIP') || '';
+
+    my @vals = split /,/, $prop;
+    return '' if (grep /^$ip\/$bits$/, @vals); # already have this entry
+
+    if ($prop ne '') {
+        $prop .= ",$ip/$bits";
+    } else {
+        $prop = "$ip/$bits";
+    }
+
+    $rec->set_prop('IgnoreIP', $prop);
+
+    return 1;
+}
+
+
+sub remove_valid_from {
+
+    my $c = shift;
+
+    my @remove = @{$c->every_param('ValidFromRemove')};
+    return 1 unless @remove;
+
+    my @vals = @{$c->get_valid_from()};
+    unless (@vals) {
+        print STDERR "ERROR: unable to load IgnoreIP property from conf db\n";
+        return undef;
+    }
+
+    #$c->app->log->debug("remo: " . $c->dumper(\@remove) .' vals: '. $c->dumper(\@vals));
+
+    foreach my $entry (@remove) {
+        @vals = (grep { $entry ne $_ } @vals);
+    }
+
+    my $prop = '';
+    $prop = join(',', @vals) if @vals;
+
+    $cdb->get('fail2ban')->set_prop('IgnoreIP', $prop);
+
+    return 1;
+}
+
+
+sub ip_number_or_blank {
+
+    my $c = shift;
+    my $ip = shift;
+
+    if (!defined($ip) || $ip eq "") {
+        return 'OK';
+    }
+    $c->ip_number( $ip );
+}
+
+
+sub subnet_mask_bit {
+
+    my ($c, $mask) = @_;
+
+    my @allowed = (8,9,12,14,16,17,20,22,24,25,28,30,32);
+
+    if ( !defined($mask) || $mask eq "" || grep( /^$mask$/, @allowed ) ) {
+        return "OK";
+    }
+    return $c->l('f2b_INVALID_SUBNET_MASK');
+}
+
+
+sub validate_network_and_mask {
+
+  my $c = shift;
+  my $net = shift || "";
+  my $mask = shift || "";
+
+#  my $net = $c->param('Ip') || "";
+  if ($net xor $mask) {
+    return $c->l('f2b_ERR_INVALID_PARAMS');
+  }
+
+  return 'OK';
+}
+
+
+sub get_prop {
+
+#    my $c   = shift;
+    my $item = shift;
+    my $prop = shift;
+    my $value = $cdb->get_prop($item, $prop) || '';
+    if ( $value eq "" && exists($defaultval{$prop})  && $item eq "fail2ban") {
+	$value=$defaultval{$prop};
+    } elsif ( $value eq "" && exists($defaultval{$item}) && $prop eq "Fail2Ban" && $item ne "fail2ban" ) {
+        $value=$defaultval{$item};
+    }
+
+    return $value;
+}
+
+
+sub get_valid_from {
+
+    my $c = shift;
+    my @vals_sorted = ();
+
+    my $rec = $cdb->get('fail2ban');
+    if ( $rec ) {
+        my @vals = (split ',', $rec->prop('IgnoreIP'));
+   	 @vals_sorted = sort ip_sort @vals if @vals;
+#	@vals_sorted = @vals;
+    }
+
+    return \@vals_sorted;
+}
+
+
+sub get_current_deny {
+
+    my $c = shift;
+
+    my @cdeny = `/usr/bin/sfail2ban`;
+
+    return \@cdeny
+}
+
+
+sub ip_sort(@) {
+    return esmith::util::IPquadToAddr($a) <=> esmith::util::IPquadToAddr($b);
+}
+
+
+1;
+
--- a/root/usr/share/smanager/lib/SrvMngr/I18N/Modules/Fail2ban/fail2ban_en.lex
+++ b/root/usr/share/smanager/lib/SrvMngr/I18N/Modules/Fail2ban/fail2ban_en.lex
@@ -0,0 +1,56 @@
+'f2b_FORM_TITLE' => 'Fail2ban service',
+'f2b_SERVICE_STATUS' => 'Fail2ban service status.',
+'f2b_STATUS' => 'Status',
+'f2b_FilterLocalNetworks_STATUS' => 'Whitelist all the local network defined.',
+'f2b_FilterLocalNetworks' => 'FilterLocalNetworks status',
+'f2b_FilterValidRemoteHosts_STATUS' => 'Whitelist all the authorized remote hosts allowed to acces server-manager.',
+'f2b_FilterValidRemoteHosts' => 'FilterValidRemoteHosts status',
+'f2b_SEND_MAIL_STATUS' => 'Status of qmail jail',
+'f2b_MAIL' => 'Mail',
+'f2b_BANTIME' => 'Set the default ban time for jails (Initial default is 1800 seconds).',
+'f2b_DEFAULT_BANTIME' => 'Bantime',
+'f2b_FINDTIME' => '>Set the default find time for jails (Initial default is 900 seconds).',
+'f2b_DEFAULT_FINDTIME' => 'Findtime',
+'f2b_MAXRETRY' => 'Set the default max retry allowed before being ban (Initial default is 3).',
+'f2b_DEFAULT_MAXRETRY' => 'Maxretry',
+'f2b_SSHD_STATUS' => 'Status of sshd jail.',
+'f2b_SSHD' => 'sshd',
+'f2b_QPSMTPD_STATUS' => 'Status of qpsmtpd (incoming emails) jail.',
+'f2b_QPSMTPD' => 'qpsmtpd',
+'f2b_IMAP_STATUS' => 'Status of dovecot (imap service to retrieve emails) jail.',
+'f2b_IMAP' => 'dovecot',
+'f2b_HTTPD_STATUS' => 'Status of httpd jails. Multiple features are enabled at once there.',
+'f2b_HTTPD' => 'httpd',
+'f2b_FTP_STATUS' => 'Status of proftpd jail.',
+'f2b_FTP' => 'proftpd',
+'f2b_LEMONLDAP_STATUS' => 'Status of LemonLDAP jail, if installed. Nothing is running if LemonLDAP is not installed or disabled.',
+'f2b_LEMONLDAP' => 'LemonLDAP',
+'f2b_EJABBERD_STATUS' => 'Status of ejabberd jail, if installed. Nothing is running if ejabberd is not installed or disabled.',
+'f2b_EJABBERD' => 'ejabberd',
+'f2b_SOGOD_STATUS' => 'Status of SOGO jail, if installed. Nothing is running if SOGO is not installed or disabled.',
+'f2b_SOGOD' => 'Sogo',
+'f2b_WORDPRESS_STATUS' => 'Status of wordpress jails. You need to activate it manually whether you have it in an ibay or use the contrib. Please also install the plugin in all your wordpress instances.',
+'f2b_WORDPRESS' => 'Wordpress',
+'f2b_SMANAGER_STATUS' => 'Status of smanager jails. You need to activate it manually if you install it after fail2ban.',
+'f2b_SMANAGER' => 'Smanager',
+'f2b_VALIDFROM_TITLE' => 'Allowed Hosts',
+'f2b_VALIDFROM_DESC' => 'This is a list of hosts that will not be blocked by fail2ban.',
+'f2b_NO_ENTRIES_YET' => 'No Entries Yet',
+'f2b_DESC_ADD_IP' => 'To add a new allowed network, enter the details below.',
+'f2b_ADD_IP' => 'Authorized network',
+'f2b_DESC_ADD_BITS' => 'To add a new allowed network, enter the associated subnet using bits eg 22, 25 or 32).',
+'f2b_ADD_BITS' => 'Authorized network subnet',
+'f2b_CURRENT_DENY_TITLE' => 'Blocked Hosts',
+'f2b_CURRENT_DENY_DESC' => 'This is a list of hosts that are currently blocked.',
+'f2b_JAIL' => 'Jail',
+'f2b_FIRST_SEEN' => 'Host first seen',
+'f2b_SUCCESS' => 'The new fail2ban settings have been saved.',
+'f2b_ERR_NO_RECORD' => 'Unable to locate fail2ban record in configuration db',
+'f2b_ERROR_STOPPING' => 'Error while trying to stop service',
+'f2b_SUCCESS_IP' => 'The following IP has been unbanned',
+'f2b_WHITELIST' => 'Whitelist',
+'f2b_SUCCESS_IP_WHITE' => 'The following IP has been unbanned and whitelisted',
+'f2b_ERROR_UPDATING' => 'Unable to unban',
+'f2b_ERROR_UPDATING_WHITE' => 'Unable to unban and whitelist',
+'f2b_ERR_INVALID_PARAMS' => 'Invalid network parameters',
+'f2b_INVALID_SUBNET_MASK' => 'Invalid subnet mask',
--- a/root/usr/share/smanager/themes/default/templates/fail2ban.html.ep
+++ b/root/usr/share/smanager/themes/default/templates/fail2ban.html.ep
@@ -0,0 +1,180 @@
+% layout 'default', title => "Sme server 2 - fail2ban";
+
+% content_for 'module' => begin
+
+<div id="module" class="module fail2ban-panel">
+
+    %if ($config->{debug} == 1) {
+	<p>
+	%= dumper $c->current_route
+	%= dumper $f2b_datas
+	</p>
+    %}
+
+    % if ( stash 'error' ) {
+    	<br><div class=sme-error>
+    	%= $c->render_to_string(inline => stash 'error') 
+	</div>
+    %}
+
+    <h1><%= $title %></h1>
+
+  %= form_for '/fail2ban' => (method => 'POST') => begin
+    <p>
+    %=l('f2b_SERVICE_STATUS')
+    <br><span class=label>
+    %=l 'f2b_STATUS'
+    </span><span class=input>
+    % param 'Status' => $f2b_datas->{status} unless param 'Status';
+    %= select_field 'Status' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_FilterLocalNetworks_STATUS')
+    <br><span class=label>
+    %=l 'f2b_FilterLocalNetworks'
+    </span><span class=input>
+    % param 'FilterLocalNetworks' => $f2b_datas->{filterlocalnetworks} unless param 'FilterLocalNetworks';
+    %= select_field 'FilterLocalNetworks' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_FilterValidRemoteHosts_STATUS')
+    <br><span class=label>
+    %=l 'f2b_FilterValidRemoteHosts'
+    </span><span class=input>
+    % param 'FilterValidRemoteHosts' => $f2b_datas->{filtervalidremotehosts} unless param 'FilterValidRemoteHosts';
+    %= select_field 'FilterValidRemoteHosts' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_SEND_MAIL_STATUS')
+    <br><span class=label>
+    %=l 'f2b_MAIL'
+    </span><span class=input>
+    % param 'Mail' => $f2b_datas->{mail} unless param 'Mail';
+    %= select_field 'Mail' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p><span class=label>
+    %=l 'f2b_DEFAULT_BANTIME'
+    </span><span class=input>
+    % param 'BanTime' => $f2b_datas->{bantime} unless param 'BanTime';
+    %= text_field 'BanTime', size => '9', class => 'input'
+    </span><span class=label2>
+    %=l 'f2b_DEFAULT_FINDTIME'
+    </span><span class=input>
+    % param 'FindTime' => $f2b_datas->{findtime} unless param 'FindTime';
+    %= text_field 'FindTime', size => '6', class => 'input'
+    </span><span class=label2>
+    %=l 'f2b_DEFAULT_MAXRETRY'
+    </span><span class=input>
+    % param 'MaxRetry' => $f2b_datas->{maxretry} unless param 'MaxRetry';
+    %= text_field 'MaxRetry', size => '2', class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_SSHD_STATUS')
+    <br><span class=label>
+    %=l 'f2b_SSHD'
+    </span><span class=input>
+    % param 'Sshd' => $f2b_datas->{sshd} unless param 'Sshd';
+    %= select_field 'Sshd' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p><p>
+    %=l('f2b_QPSMTPD_STATUS')
+    <br><span class=label>
+    %=l 'f2b_QPSMTPD'
+    </span><span class=input>
+    % param 'Qpsmtpd' => $f2b_datas->{qpsmtpd} unless param 'Qpsmtpd';
+    %= select_field 'Qpsmtpd' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_IMAP_STATUS')
+    <br><span class=label>
+    %=l 'f2b_IMAP'
+    </span><span class=input>
+    % param 'Dovecot' => $f2b_datas->{dovecot} unless param 'Dovecot';
+    %= select_field 'Dovecot' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_HTTPD_STATUS')
+    <br><span class=label>
+    %=l 'f2b_HTTPD'
+    </span><span class=input>
+    % param 'Httpd-e-smith' => $f2b_datas->{'httpd-e-smith'} unless param 'Httpd-e-smith';
+    %= select_field 'Httpd-e-smith' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_FTP_STATUS')
+    <br><span class=label>
+    %=l 'f2b_FTP'
+    </span><span class=input>
+    % param 'Ftp' => $f2b_datas->{ftp} unless param 'Ftp';
+    %= select_field 'Ftp' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_LEMONLDAP_STATUS')
+    <br><span class=label>
+    %=l 'f2b_LEMONLDAP'
+    </span><span class=input>
+    % param 'Lemonldap' => $f2b_datas->{lemonldap} unless param 'Lemonldap';
+    %= select_field 'Lemonldap' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_EJABBERD_STATUS')
+    <br><span class=label>
+    %=l 'f2b_EJABBERD'
+    </span><span class=input>
+    % param 'Ejabberd' => $f2b_datas->{ejabberd} unless param 'Ejabberd';
+    %= select_field 'Ejabberd' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_SOGOD_STATUS')
+    <br><span class=label>
+    %=l 'f2b_SOGOD'
+    </span><span class=input>
+    % param 'Sogod' => $f2b_datas->{sogod} unless param 'Sogod';
+    %= select_field 'Sogod' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_WORDPRESS_STATUS')
+    <br><span class=label>
+    %=l 'f2b_WORDPRESS'
+    </span><span class=input>
+    % param 'Wordpress' => $f2b_datas->{wordpress} unless param 'Wordpress';
+    %= select_field 'Wordpress' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_SMANAGER_STATUS')
+    <br><span class=label>
+    %=l 'f2b_SMANAGER'
+    </span><span class=input>
+    % param 'Smanager' => $f2b_datas->{smanager} unless param 'Smanager';
+    %= select_field 'Smanager' => [[(l 'DISABLED') => 'disabled'], [(l 'ENABLED') => 'enabled']], class => 'input'
+    </span></p>
+
+    %= include 'partials/_f2b_valid'
+
+    <p>
+    %=l('f2b_DESC_ADD_IP')
+    <br><span class=label>
+    %=l 'f2b_ADD_IP'
+    </span><span class=input>
+    % param 'Ip' => $f2b_datas->{ip} unless param 'Ip';
+    %= text_field 'Ip', class => 'input'
+    </span></p>
+    <p>
+    %=l('f2b_DESC_ADD_BITS')
+    <br><span class=label>
+    %=l 'f2b_ADD_BITS'
+    </span><span class=input>
+    % param 'Bits' => $f2b_datas->{bits} unless param 'Bits';
+    %= text_field 'Bits', class => 'input'
+    </span></p>
+
+    <div class='center'>
+    %= submit_button $c->l('SAVE'), class => 'action'
+    </div>
+
+  % end
+
+    %= include 'partials/_f2b_blocked'
+
+</div>
+
+%end
--- a/root/usr/share/smanager/themes/default/templates/partials/_f2b_blocked.html.ep
+++ b/root/usr/share/smanager/themes/default/templates/partials/_f2b_blocked.html.ep
@@ -0,0 +1,47 @@
+<div id="f2b_blocked">
+    <hr class='sectionbar' /><h2>
+    %=l 'f2b_CURRENT_DENY_TITLE'
+    </h2><p>
+    %=l 'f2b_CURRENT_DENY_DESC'
+    </p>
+
+    % my @denys = @{$c->get_current_deny()};
+    % if ($config->{debug} == 1) {
+	<p><%= dumper @denys %></p>
+    % }
+
+    %	if ( @denys ) {
+	<p>
+	<table class="sme-border"><tbody>
+	<tr><th class='sme-border'>
+    	    %=l 'IP_ADDRESS'
+    	    </th><th class='sme-border'>
+    	    %=l 'f2b_JAIL'
+    	    </th><th class='sme-border'>
+    	    %=l 'ACTION'
+    	</th></tr>
+    %    foreach my $sval ( @denys) {
+    %	    my @ssval = split(':',$sval);
+    %	    my $curjail = $ssval[0];
+    %	    $curjail =~ s/^\s//;
+    %	    my @ssvalip = split(' ',$ssval[1]);
+    %	    foreach my $sssval (@ssvalip) {
+    %		my $ip=$sssval;
+    %	        my $action3 = "<a href=\"fail2ban2?action=RemoveIP".
+    %			"&IP=$ip&Jail=$curjail\">".$c->l('REMOVE')."</a>" .
+    %                   " <a href=\"fail2ban2?action=RemoveIP&IP=$ip" .
+    %                   "&Jail=$curjail&Whitelist=true\">".$c->l('WHITELIST')."</a>" ;
+		<tr>
+        	%= t td => (class => 'sme-border') => "$ip"
+    		%= t td => (class => 'sme-border') => "$curjail"
+    		<td class='sme-border'><%= $c->render_to_string(inline => $action3) %></td>
+    		</tr>
+    %	    }
+    %    }
+    	</tbody></table></span></p>
+    %	} else {
+	<b>
+        %=l 'f2b_NO_ENTRIES_YET';
+        </b>
+    %	}
+</div>
--- a/root/usr/share/smanager/themes/default/templates/partials/_f2b_valid.html.ep
+++ b/root/usr/share/smanager/themes/default/templates/partials/_f2b_valid.html.ep
@@ -0,0 +1,35 @@
+<div id="f2b_valid">
+    <hr class='sectionbar' /><h2>
+    %=l 'f2b_VALIDFROM_TITLE'
+    </h2><p>
+    %=l 'f2b_VALIDFROM_DESC'
+    </p>
+    %	my @valids = @{$c->get_valid_from()};
+    %	if ( @valids ) {
+	<p>
+	<table class="sme-border"><tbody>
+	<tr><th class='sme-border'>
+    	    %=l 'NETWORK'
+    	    </th><th class='sme-border'>
+    	    %=l 'REMOVE'
+    	</th></tr>
+    %    foreach my $v ( @valids) {
+    %        my $checked = '';
+	    <tr>
+            %= t td => (class => 'sme-border') => "$v"
+	    <td class='sme-border'>
+	    % if ( $checked eq 'checked' ) {
+		<input type='checkbox' name='ValidFromRemove' checked value='<%= $v %>'>
+	    %} else {
+		%= check_box 'ValidFromRemove' => $v
+	    %}
+	    </td>
+    	</tr>
+    %    }
+    	</tbody></table></span></p>
+    %	} else {
+	<b>
+        %=l 'f2b_NO_ENTRIES_YET';
+        </b>
+    %	}
+</div>