ok - another question. @PitzKey
if you adjust the bantime and find time, it reloads the jails, rescans the log files, rebuilds the iptables and ends up banning my management source IP to the box.
within 5 minutes after reload, the cron kicks off and syncs the
fail2ban-client get $JAIL ignoreip with the $IPs of the trusted zone.
This does not unban the IPs from trusted-zone ( at least not for me )
I see in the cron log it tries to run the following:
you have one entry where a file doesnt exist error and it looks like this file should be the one to do the unbanning
/var/www/html/admin/modules/firewall/hooks/dynamic-jails but doesnt as the IP is still banned