Worked on security hardening for the jellyfin/jellyfin.org repository by developing a comprehensive Fail2Ban configuration guide tailored for upstream reverse proxy deployments. Focused on enabling dynamic IP blocking through custom Fail2Ban action files and SSH key-based authentication, the work leveraged Bash scripting and system administration skills to manage iptables chains effectively. The guide detailed updated jail configurations, restart procedures, and thorough testing workflows to validate ban and unban functionality. By providing clear, actionable documentation for operators and developers, this contribution improved the security posture and reliability of deployments, reducing the attack surface without introducing new bugs during the development period.