Welcome to WP fail2ban - a WordPress plugin that writes a myriad of WordPress events to syslog for integration with fail2ban.

Protect Your Server

Stop brute-force attacks

Prevent user enumeration

Blacklist common usernames

Improve Performance

Serve legitimate users, not attackers.


  • Add support for blocking by Country. [Premium only]
  • Add XML-RPC blocking; allow trusted IPs and Jetpack (h/t @mhweb). [Premium only]


  • Add support for Pingbacks while blocking XML-RPC.

Version Numbers

TL;DR: 4.3.1.x is a Premium-only development (beta) branch. <Read more>