diff --git a/_fail2ban_addon/action.d/nginxrepeatoffender-ufw.conf b/_fail2ban_addon/action.d/nginxrepeatoffender-ufw.conf
new file mode 100644
index 00000000000..a3823124a41
--- /dev/null
+++ b/_fail2ban_addon/action.d/nginxrepeatoffender-ufw.conf
@@ -0,0 +1,26 @@
+# action for nginx-ultimate-bad-bot-blocker fail2ban-addon to use ufw as the blocking firewall
+# works with ipv4 and ipv6
+# to use this change banaction = nginxrepeatoffender in jail.local to banaction = nginxrepeatoffender-ufw
+[Definition]
+
+actionstart = 
+actionstop = 
+actioncheck = 
+actionban = [ -n "<application>" ] && app="app <application>"
+              ufw prepend <blocktype> from <ip> to <destination> $app comment "Fail2Ban Repeated Offender"
+
+actionunban = [ -n "<application>" ] && app="app <application>"
+              ufw delete <blocktype> from <ip> to <destination> $app
+
+[Init]
+# Option: blocktype
+# Notes.: reject or deny
+blocktype = deny
+
+# Option: destination
+# Notes.: The destination address to block in the ufw rule
+destination = any
+
+# Option: application
+# Notes.: application from sudo ufw app list
+application =