diff --git a/templates/jail.Ubuntu22.j2 b/templates/jail.Ubuntu22.j2
index b9ec0aa57f7a8dd3853b7dd8d098be6e08c5cd7c..fbf732d79c619cbb54477cd1a8437f4b33b685e8 100644
--- a/templates/jail.Ubuntu22.j2
+++ b/templates/jail.Ubuntu22.j2
@@ -4,6 +4,7 @@ before = paths-debian.conf
 [DEFAULT]
 # MISC
 ignoreip = 127.0.0.1/8{% if inventory_hostname in groups.docker | default([]) %} 172.16.0.0/12 192.168.0.0/16{% endif %}{% for host in groups.docker_nagios | default([]) %} {{ hostvars[host].ansible_host }}/32{% endfor %}
+
 ignorecommand =
 bantime  = 86400 ; ban for 1 day
 findtime  = 3600 ; search for 1 hour
@@ -82,7 +83,7 @@ logpath  = /var/log/fail2ban.log
 {% if inventory_hostname in groups.docker | default([]) and inventory_hostname not in groups.docker_nextcloud | default([]) %}
 
 [traefik-auth]
-chain    = DOCKER-USER
+chain    = FORWARD
 enabled  = true
 {% if docker_userns_remap %}
 logpath  = /var/lib/docker/{{ dockremap_subuid | default("*") }}.{{ dockremap_subgid | default("*") }}/volumes/inverseproxy_logs/_data/access.log