Hello Tim,
From my understanding you're trying to match all entries with wp-login.php and this can be achieved with the following regex:
^ <HOST>.*wp-login.phpThis can be tested by running the following command:
fail2ban-regex /path/to/test/file '^ <HOST>.*wp-login.php' --print-all-matchedFor the sake of testing, I've created a copy of /var/log/haproxy/haproxy.log that is owned by the Jelastic user and you can run the command below through the dashboards WebSSH:
fail2ban-regex /var/lib/haproxy/NFM-88835-628.log '^ <HOST>.*wp-login.php' --print-all-matchedLooking forward to hearing back from you!
Regards,