# Fail2Ban apache-404 filter
#
[INCLUDES]
# Read common prefixes. If any customizations available -- read them from
# apache-common.local
before = apache-common.conf

[Definition]

# datepattern = %%d/%%b/%%Y:%%H:%%M:%%S %%z
datepattern = %%d/%%b/%%Y:%%H:%%M:%%S



badagents = 360Spider|ZmEu|Auto Spider 1.0|zgrab/[0-9]*\.[0-9a-zA-Z]*|Wget\(.*\)|MauiBot.*|AspiegelBot.*|SemrushBot.*|PHP/.*


failregex = ^<HOST> - .* "(GET|POST|HEAD).*HTTP.*" (404|400|403|408) .*$
            ^<HOST> - .* "\\x.*" (404|400|403|408) .*$
            ^<HOST> - .* "-" (404|400|403|408) .*$

ignoreregex =.*(robots.txt|favicon.ico|jpg|png)