[web-accesslog-limit404]

; rule against call of 404 forbidden access (for all servers)
enabled = true
port    = http,https
filter  = web-accesslog-limit404
logpath = /var/log/apache2/*access*_log
action  = %(action_mw)s
bantime  = 600    ;
findtime = 30     ;
maxretry = 100    ; 100 error 404 in 30 second, we can ban