diff --git a/files/jail.local b/files/jail.local
index 34d87c5..f369078 100644
--- a/files/jail.local
+++ b/files/jail.local
@@ -11,6 +11,9 @@ maxretry = 5
 # banaction = firewallcmd-ipset
 # action    = %(action_mwl)s
 
+banaction = nftables
+banaction_allports = nftables[type=allports]
+
 [sshd]
 enabled = true
 filter  = sshd