diff --git a/baldur/configuration.nix b/baldur/configuration.nix
index 70eff7e..2b682b7 100644
--- a/baldur/configuration.nix
+++ b/baldur/configuration.nix
@@ -60,6 +60,20 @@ with lib; {
     fail2ban = {
       enable = true;
       bantime-increment.enable = true;
+      jails = {
+        "nginx-botsearch" = ''
+          filter = nginx-botsearch
+          action =  nftables-multiport[name=HTTP, port="http,https"]
+          logpath = /var/log/nginx/error.log*
+          backend = auto
+        '';
+        "nginx-http-auth" = ''
+          filter = nginx-http-auth
+          action =  nftables-multiport[name=HTTP, port="http,https"]
+          logpath = /var/log/nginx/error.log*
+          backend = auto
+        '';
+      };
     };
     nginx = {
       enable = true;