diff --git a/ChangeLog b/ChangeLog
index 690b168a..db419c3b 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -27,6 +27,7 @@ ver. 0.9.2 (2014/XX/XXX) - wanna-be-released
      possible to extend a stock filter or jail regexp in .local file
      (opposite to simply set failregex/ignoreregex that overwrites it),
      see gh-867.
+   - Monit config for fail2ban in /files/monit
 
 - Enhancements:
    * Enable multiport for firewallcmd-new action.  Closes gh-834
diff --git a/files/monit/fail2ban b/files/monit/fail2ban
new file mode 100644
index 00000000..8e6c9419
--- /dev/null
+++ b/files/monit/fail2ban
@@ -0,0 +1,9 @@
+check process fail2ban with pidfile /var/run/fail2ban/fail2ban.pid
+    group services
+    start program = "/etc/init.d/fail2ban force-start"
+    stop  program = "/etc/init.d/fail2ban stop || :"
+    if failed unixsocket /var/run/fail2ban/fail2ban.sock then restart
+    if 5 restarts within 5 cycles then timeout
+
+check file fail2ban_log with path /var/log/fail2ban.log
+    if match "ERROR|WARNING" then alert