diff --git a/config/jail.conf b/config/jail.conf
index 2021f865..9750d16f 100644
--- a/config/jail.conf
+++ b/config/jail.conf
@@ -23,7 +23,7 @@
 [DEFAULT]
 
 #
-# MISCELANEOUS OPTIONS
+# MISCELLANEOUS OPTIONS
 #
 
 # "ignoreip" can be an IP address, a CIDR mask or a DNS host. Fail2ban will not
@@ -76,7 +76,7 @@ logencoding = auto
 #   It is unlikely that the default value should ever be changed.
 #   Enable only relevant to your setup jails in your .local or jail.d/*.conf
 #
-# true:  jail will be enabled and lofiles will get monitored for changes
+# true:  jail will be enabled and log files will get monitored for changes
 # false: jail is not enabled
 enabled = false
 
@@ -108,6 +108,10 @@ protocol = tcp
 # Specify chain where jumps would need to be added in iptables-* actions
 chain = INPUT
 
+# Ports to be banned
+# Usually should be overridden in a particular jail
+port = 0:65535
+
 #
 # Action shortcuts. To be used to define action parameter
 
@@ -170,13 +174,10 @@ logpath  = /var/log/dropbear
 
 # pam-generic filter can be customized to monitor specific subset of 'tty's
 banaction = iptables-allports
-# port actually must be irrelevant but lets leave it all for some possible uses
-port     = anyport
 logpath  = /var/log/auth.log
 
 [xinetd-fail]
 
-port      = all
 banaction = iptables-multiport-log
 logpath   = /var/log/daemon.log
 maxretry  = 2