Possible DDos

  • Resolved globalgrouponline

    (@globalgrouponline)


    2 years, 8 months ago

    We have enabled block for multiple countries and enabled security including Cloudflare.

    Seems Cloudflare still forwards the visitors to our site and it does get blocked by Wordfence.

    Seems they are using search tools tool to visit pages that do not exist and getting blocked, however it continues to max our resource limits.

    We added a long list of URLs which do not exist to be blocked but the traffic still continues.

    Can you advise how we can stop this from happening or if there is something we can configure so it does not reach our website?

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @globalgrouponline, thanks for your detailed message!

    If this is a true DDoS, or at the very least a huge increase in page views, protection at the server’s end such as Cloudflare should be the most effective solution. I say this because Wordfence is an endpoint firewall, so can catch/restrict/block users using Brute Force or Rate Limiting settings, but at the point your site tries to host content to them. Restrictions therefore are possible, but it can’t stop the requests from initially hitting your site, even if it ends up blocking them.

    It can be frustrating to see so many requests, especially if there seems to be no logical reason, but this is actually quite a normal occurrence. You might find the following blog post interesting: https://www.wordfence.com/blog/2018/03/ask-wordfence-why-is-an-insignificant-site-like-mine-being-attacked/

    If it’s a persistent problem that maxes out the resources of your site, you should definitely speak with your hosting provider or server administrator to see if they can be detected before PHP (and therefore Wordfence) try to run.

    I hope that helps you out!

    Thanks,

    Peter.

Viewing 1 replies (of 1 total)
  • The topic ‘Possible DDos’ is closed to new replies.