File Structure

just for historic reasons: excerpt from our ICQ conversation:

->
ok -- be it /etc/fail2ban/{fail2ban{.local,}.conf,{action,filter}s.d/*} ?
<-
j'approuve

Jails

I don't see sense in jail.d directory: my suggestion is simply to have 2 config parameters within fail2ban.conf

default_actions and jails (multiline)

examples:

default_actions=mail-smtp iptables
jails=%(default_actions) ssh
      %(default_actions) apache
      mail-postfixadmin postfix
      hostsdeny rlogin

fail2ban.local of cause could easily override those parameters

Sections

I see next types of sections within the configuration (as you pointed out by the split already)

• filter
• action

the question is either mail-smtp (as what MAIL is now) should be separate kind like now and use internal python's SMTP client or we can rely on external, then it could be easily unified into "action" class. mail-mta is the one which easily can be implemented within "action" class when we rely on the present on the system MTA and \\mail\\ command