@medsource
thanks again for your excellent documentation,

yesterday i had some time to play with and i got fail2ban installed and working too.
first i tried it with your setup, which works nicely with vsftp, but i couldn't get it running with dropbear, because i couldn't find any possibility to configure dropbear where to write it's logfile.

then i came back to my original approach using syslog-ng

after fine-tweaking a lot the syslog-ng filters and logs finally it works.
looking at the fail2ban-log-file this morning showed me that 3 attempts to hack my wl700 have been banned - i'm happy

brgds