Yes, I add them using /usr/local/hestia/data/firewall/custom.sh (remember to give execution permissions to this script if you want to use it) script loaded by Hestia when updating firewall.
#!/usr/bin/env bash
ipt="/usr/sbin/iptables"
ipset="i5 portspoof sahsanu-LV1 sahsanu-LV2 sahsanu-LV3 permaban"
chain_prefix="LOG_DROP"
action="DROP"
for i in $ipset; do
"$ipt" -F "$chain_prefix"_"$i"
"$ipt" -X "$chain_prefix"_"$i"
"$ipt" -N "$chain_prefix"_"$i"
"$ipt" -A "$chain_prefix"_"$i" -j LOG --log-level 4 --log-prefix "iptables:drop:$i "
"$ipt" -A "$chain_prefix"_"$i" -j "$action"
"$ipt" -I INPUT -m set --match-set "$i" src -j "$chain_prefix"_"$i"
done