diff --git a/tasks/main.yml b/tasks/main.yml
index 2b20a18..a1b6f03 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -65,11 +65,14 @@
 
     - name: Deploy main config
       ansible.builtin.template:
-        src: etc/crowdsec/config.yaml.j2
-        dest: /etc/crowdsec/config.yaml
+        src: "etc/crowdsec/{{ item }}.yaml.j2"
+        dest: "/etc/crowdsec/{{ item }}.yaml.local"
         owner: root
         group: root
         mode: 0644
+      with_items:
+        - "config"
+        - "profiles"
       notify: restart crowdsec
 
     - name: Deploy whitelist
diff --git a/templates/etc/crowdsec/profiles.yaml.j2 b/templates/etc/crowdsec/profiles.yaml.j2
new file mode 100644
index 0000000..15dabb7
--- /dev/null
+++ b/templates/etc/crowdsec/profiles.yaml.j2
@@ -0,0 +1,13 @@
+name: default_ip_remediation
+#debug: true
+filters:
+ - Alert.Remediation == true && Alert.GetScope() == "Ip"
+decisions:
+ - type: ban
+   duration: 168h
+# notifications:
+#   - slack_default  # Set the webhook in /etc/crowdsec/notifications/slack.yaml before enabling this.
+#   - splunk_default # Set the splunk url and token in /etc/crowdsec/notifications/splunk.yaml before enabling this.
+#   - http_default   # Set the required http parameters in /etc/crowdsec/notifications/http.yaml before enabling this.
+#   - email_default  # Set the required email parameters in /etc/crowdsec/notifications/email.yaml before enabling this.
+on_success: break