blocking IP

  • Resolved Tomperys

    (@tomperys)


    2 years, 1 month ago

    `I have strange issue with “All in one security and firewall plugin”, when I tried to access the page (or login page) i was redirected to 127.0.0.1 – I guess thats the 404 error lockdown right? But strange thing is there was no record for 404 page for this IP, the IP even wasnt in permanent blocked IP list or just the lockdown IP list. Simply said I looked eevrywhere and the IP wasnt listed anywhere still I got this 127.0.0.1 and is even weirder because it didnt start to work when i turn off the 404 lockdown option, it didnt worked with cleared cache in the browser, it didnt work in another browser and even not in anonymous mode. Connection from mobile data (totally different IP) didn’t work either. Only deactivatin of the whole plugin helped…

    Any ideas where the problem could be ?

    • This topic was modified 2 years, 1 month ago by Tomperys.
Viewing 10 replies - 1 through 10 (of 10 total)
  • Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    @tomperys

    If the website pages also getting redirected then it will be IP blocked due to 404 or invalid login attempts. It will be hard for me to say without knowing stat of your wordpress database.

    Can you please provide your IP address and aiowps_permanent_block table from your database?

    Also can you make sure by mistake your IP not added in Blacklist manager > Ban IPs list ?

    Regards

    Thread Starter Tomperys

    (@tomperys)

    The option “Enable IP or user agent blacklisting” is not enabled at all and there is no IP or user in the fields. The 404 detection is also disabled at this moment, “Locked IP Adresses” are empty so there are only some IPs in “Permanent Block List” which I guess are blocked as they should be… and then under “User login” and “Login lockdown IP whitelist settings” there are my different IPs in the whitelist.

    All this didnt help and all the attempts to open just the sites (or the URL for login site) from any of my whitelisted IPs (which are not in the permanent blocked IPs) ended up as 127.0.0.1 from no reason apparently

    The IPs that was unable to access the WP site were 85.71.38.188 and 37.188.255.245 and 37.188.161.150 which are on the whitelist. The permanent blocked IP tables is here easyupload.io/rtp0j1

    Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    Hi @tomperys

    Sorry for the late reply.

    Yes, If I check Blocked IP Tables It do not have 85.71.38.188, 37.188.255.245, 37.188.161.150 etc IPs and you do not have blacklist ips enabled so It should be something different.

    Do you have the All in one security paid version country blocking enabled?
    The IP address you are trying are form Czechia country.

    Also if you do not have paid version installed, Do any one else can access the website ?

    If yes, It needs to search the whole database above IPs blocked. either by mysqldumb the whole database or If you have phpMyAdmin installed use its ‘Search’ feature.

    If no, you should provide me the staging server ( copy your code + site database ) so I can cross check there.

    Regards

    Thread Starter Tomperys

    (@tomperys)

    I dont have paid version so the country blocking is not enabled (and Czech is OK, because that is my country)

    There are just two users which can access the site me and one friend, I have usualy no problems accessing the site but that friend (those IPs are his) is periodically blocked. And there is nothing that should cuase the blocation becuase the IP is nowhere in the AIOS but when the plugin is deactivated the website can be accessed… its very weird

    I can try to do the dump and search it for the IP but I doubt that I will find anything

    Plugin Support vupdraft

    (@vupdraft)

    Which All in One features do you have currently enabled?

    Plugin Contributor Prashant Baldha

    (@pmbaldha)

    Hi,

    Please accept my apologies for your inconvenience.

    It looks like you have enabled Cookie-based brute force prevention in the past. In the older version of AIOS, It was not working.

    In the latest few release, it started working again.

    We have given a feature that you can disable the brute force login prevention by adding the below code line in the wp-config.php file:

    define( ‘AIOS_DISABLE_COOKIE_BRUTE_FORCE_PREVENTION’, true );

    And then try to browse the login page

    We hope you understand it. We are very sorry again.

    Thank you for reaching out to us.

    Thread Starter Tomperys

    (@tomperys)

    Well I tried to search the mysql dump for the IP 85.71.38.188 but the only place where I see this IP in the dump is only the whitlisted IP, comments and some table with statistics. I also try to search all files if some of the files would contain the IP and no luck there either. So I dont have a clue what could cut whitelisted IP from accessing the login page and alo the whole web if the IP isnt in any blocklist at all. Its really strange. But its blocked by the AIOS becuase when you turn the plugin off (by renaming the folder in plugins) the webpage is accessible.

    Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    @tomperys

    Here you say webpage means website page or admin section any page?
    IF you have issue for admin section any page than as prashant said it will be issue of cookie based brute force.

    Can you please define( ‘AIOS_DISABLE_COOKIE_BRUTE_FORCE_PREVENTION’, true ); as 1st line of wp-config.php? and check as prashant said in last reply.

    Hi,
    Is there an EASY way to block a country…other than cutting and pasting each IP.

    I’m not that tech savvy.

    Thanks

    Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    Hi @newbie8

    Yes, You can block country but it requires AIOS Premium.

    https://aiosplugin.com/product/all-in-one-wp-security-and-firewall-premium/

    Regards

Viewing 10 replies - 1 through 10 (of 10 total)
  • The topic ‘blocking IP’ is closed to new replies.