Blacklist IP for abuser

Hi,

Though the ferm rules and fail2ban work properly to keep bad actors out, sometimes we have the need to ban an IP address completely from the server.

We could go about and block it with iptables directly on the server, but I prefer to do this with a Trellis playbook.

Can this be done with the Trellis playbooks? Perhaps via a workaround?

I’m looking for tips, happy to do some digging myself.