I added an accept via command line into the ‘trusted’ zone. It seemed to work for a while but later caused me grief when it didn’t work.
I had a friend with all Apple devices get a new IPAD. He didn’t remember the password so I had to reset it. I knew he had other devices logging into mail so I did a little research and put him in the ‘trusted’ zone. At some point he still got caught in fail2ban postfix and dovecot jails. Confusion and frustration followed when I’d see him hit the server but nothing was logging in auth.log. I’m assuming the failure was a rule precedence order?
As a companion to block it would be nice to have an accept. I’ve used it for clients setting up mail before. I think CSF lets you set a time so you don’t have to remember to remove it later.