Hi @dan-bollinger, thanks for getting in touch.
I’m glad to hear you’re enjoying Wordfence and it certainly can be frustrating to see many login attempts from specific IPs or hosts, especially if there seems to be no logical reason, but this is actually quite a normal occurrence.
You might find the following blog post interesting: https://www.wordfence.com/blog/2018/03/ask-wordfence-why-is-an-insignificant-site-like-mine-being-attacked/
Wordfence, as an endpoint firewall cannot stop a bot or human from trying to visit your website altogether, but rather deal with the visits appropriately when it happens.
My general advice is that Wordfence does all of the important blocking for you automatically so you don’t have to, but if you wish to make your brute force or rate limiting rules a little stricter so that they can’t retry as frequently, you might find the following links useful to learn some more:
https://www.wordfence.com/help/firewall/brute-force/
https://www.wordfence.com/help/firewall/rate-limiting/
Thanks,
Peter.
