Order of iptable rules after restart
The order of the rules in iptables
depends on the order in which the services start after a restart. If fail2ban
is started first, docker inserts its rules into the FORWARD
chain and hides fail2ban
s block rules.
Solution: Make fail2ban depend on the docker service, such that it started last.