I thinking about it, but don´t get any idea:
1.) When I use CloudFlare for sites, the Wordpress and any plugin get the real IP, don´t need this.
2.) When attacker attack the servers IP address, then attack without CloudFlare, this not need for Fail2ban.

I have no clue for what is this setting 🙂 Help me.

Fail2ban also needs to identify which IPs belong to the CDN. If the CDN IP is blocked, the website will not be accessible.

3 months later

Hello, it is recommended that you set the whitelist directly, it is known that CDN cannot be set normally

Nanno

    DimmmCom
    Thank you for the information. Yes, it is possible to use that in this meantime, but keeping in mind that Cloudflare global token likely will stop to work in some point in the future.