Fail2ban Whitelist IPs
Fail2ban is an excellent security tool that will do a good job safeguarding your server. However, using fail2ban you may run into two issues: friendly fire and inability to permanently ban hostile networks. I already discussed the latter issue in some detail here. As to the former, you will need to whitelist friendly IPs and/or networks.
The configuration file in question (on Fedora, CentOS, RHEL) is /etc/fail2ban/jail.conf. Locate the line starting with “ignoreip” and, if there is no such line, then add one. It should look something like this:
ignoreip = 188.8.131.52/24 184.108.40.206 220.127.116.11/24
You can specify individual IPs or networks using CIDR notation. After making changes, save the file and restart fail2ban (i.e. “service fail2ban restart”). This should help you avoid locking yourself out by accident.