diff --git a/defaults/main.yml b/defaults/main.yml
new file mode 100644
index 0000000000000000000000000000000000000000..0c94aa403041600dfdad07de43a34ee7aee89f40
--- /dev/null
+++ b/defaults/main.yml
@@ -0,0 +1,7 @@
+---
+# VLAN subnets that are to be ignored by fail2ban.
+vlans: []
+# Grand Unified Boot Server (GUBS) IPs that are to be ignored by fail2ban.
+gubs_ips: []
+# Greenbone security manager IP that is to be ignored by fail2ban.
+host_greenbone: ""
diff --git a/tasks/configure_fail2ban.yml b/tasks/configure_fail2ban.yml
index 9a5a4b7422b07317ea3a4d7e076776fbafffb81a..5f2185541b97935dc2c7552c81cd92862f19a2a5 100644
--- a/tasks/configure_fail2ban.yml
+++ b/tasks/configure_fail2ban.yml
@@ -29,7 +29,7 @@
 
       # ignored IPs: localhost, VLAN 20 (DV), sdvgubs10 (IP from multiple
       # subnets/VLANs), VPN IP ranges
-      ignoreip = 127.0.0.1/8 {{ vault_net_vlan_20 }} {{ vault_net_vlan_vpn_4 }} {{ vault_net_vlan_vpn_5 }} {{ vault_net_vlan_vpn_6 }} {{ vault_gubs_vlan_10 }} {{ vault_gubs_vlan_11 }} {{ vault_gubs_vlan_13 }} {{ vault_gubs_vlan_14 }} {{ vault_gubs_vlan_21 }} {{ vault_gubs_vlan_24 }} {{ vault_host_greenbone }}
+      ignoreip = 127.0.0.1/8 {{ vlans }} {{ vault_gubs_ips }} {{ vault_host_greenbone }}
 
       # number of failures that have to occur in the last findtime seconds to
       # ban then IP.
diff --git a/vars/main.yml b/vars/main.yml
index ed97d539c095cf1413af30cc23dea272095b97dd..0f65077d570b556f64b223820a90f18916be7922 100644
--- a/vars/main.yml
+++ b/vars/main.yml
@@ -1 +1,7 @@
 ---
+# VLAN subnets that are to be ignored by fail2ban.
+vlans: "{{ vault_vlans }}"
+# Grand Unified Boot Server (GUBS) IPs that are to be ignored by fail2ban.
+gubs_ips: "{{ vault_gubs_ips }}"
+# Greenbone security manager IP that is to be ignored by fail2ban.
+host_greenbone: "{{ vault_host_greenbone }}"