fwallascan2ban - Web server log scanner auto updates target list

I have a simple website I had stood up for a friend.  Started getting lots of bad requests from folks looking for holes.  Firewalla does great at the edge, but i wanted fine grained rules like fail2ban provides.  In addition, I wanted something to update the rule(s) at the edge and not have the web server do the blocking.

So I wrote this daemon like fail2ban called fwallascan2ban.  It can read logs, look for bannable patterns, and then uses the MSP API to auto update rules and target lists.

If you have the same need, check it out.  Always open to feedback. 

Here is the github link: https://github.com/moosery/fwallascan2ban