From 43cfd257980a83b5e2318ec6ee955b8c24ee70aa Mon Sep 17 00:00:00 2001
From: Arpad Krejczinger <krejczinger.arpad@gmail.com>
Date: Wed, 17 Sep 2025 01:08:51 +0200
Subject: [PATCH] docs: Update cron schedules to match actual configuration

- Correct permanent ban script cron schedule: 2:00 AM daily (not every 6 hours)
- Correct geoip-shell update cron schedule: 4:08 AM daily (not 4:18 AM)
- Add geoip-shell persistence cron job that runs on reboot
---
 docs/geoip-blocking.md   | 7 ++++++-
 docs/network-security.md | 2 +-
 2 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/docs/geoip-blocking.md b/docs/geoip-blocking.md
index 61d2056..61665f8 100644
--- a/docs/geoip-blocking.md
+++ b/docs/geoip-blocking.md
@@ -28,11 +28,16 @@ sudo make install
 
 ### Update Mechanism
 - **Cron Service:** ✅ Enabled
-- **Update Schedule:** Daily at 4:18 AM (`18 4 * * *`)
+- **Update Schedule:** Daily at 4:08 AM (`8 4 * * *`)
 - **Last Update:** September 17, 2025 at 00:57:41
 - **Persistence:** ✅ Enabled (survives reboots)
 - **Backup:** ✅ Automatic IP lists backup enabled
 
+### Persistence Cron Job
+- **Schedule:** On reboot (`@reboot`)
+- **Command:** `/usr/bin/geoip-shell-run.sh restore -a`
+- **Purpose:** Restores geoip-shell firewall rules after system reboot
+
 ## Inbound Geoblocking Configuration
 
 ### Blocking Mode
diff --git a/docs/network-security.md b/docs/network-security.md
index adc9318..8c9406d 100644
--- a/docs/network-security.md
+++ b/docs/network-security.md
@@ -489,7 +489,7 @@ THRESHOLD=4  # Ban after 4 fail2ban bans
 - **Iptables Rules:** `/etc/iptables/iptables.rules`
 
 #### Cron Schedule
-- **Frequency:** Every 6 hours (`0 */6 * * *`)
+- **Frequency:** Daily at 2:00 AM (`0 2 * * *`)
 - **User:** root
 - **Command:** `/home/hoborg/homelab/scripts/permanent-ban-repeat-offenders.sh`