Ninja Firewall blocks duplicator pro backup

  • Resolved mw66

    (@mw66)


    2 years, 3 months ago

    Hi,

    i have a problem with one of the firewall policies of Ninja Firewall.
    If starting a backup with duplicator pro it will render 5% and than nothing happens.
    In the Firewall log the following message appears:
    [04/Aug/22:07:39:34 +0000] - XXXXXXXXXX "GET /wp-admin/admin-ajax.php?action=duplicator_pro_process_worker&now=1659598774" "https://www.xxxxxx.xx/wp-admin/admin-ajax.php?action=duplicator_pro_process_worker&now=1659598774" "WordPress/6.0.1; xxxx"

    When i switch off the policy for “WordPress Ajax” everything is fine and duplicator creates a backup. But i don’t want to leave this setting switched off for longer.
    I’ve tried some settings in duplicator, but nothing worked.

    Is this a known issue or does anyone have a simple fix?

    Thanks in advance
    Martin

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author nintechnet

    (@nintechnet)

    This policy is used to block bots or scripts, hence it blocks your backup script.
    You can whitelist the IP using the .htninja script. Scroll down to the “ALLOW / BLOCK” section and you’ll see a code sample for that purpose.

    Thread Starter mw66

    (@mw66)

    Thank you very much for your help.
    Do I get you right, i have to download the script via ftp and fill in the code sample with my IP?
    Is there no way to whitelist the IP in the WP backend?

    Best
    Martin

    Plugin Author nintechnet

    (@nintechnet)

    That’s correct, just create a .htninja file in your WordPress root folder and add this code:

    <?php
/*
 +===========================================================================================+
 | NinjaFirewall optional configuration file                                                 |
 |                                                                                           |
 | See: https://blog.nintechnet.com/ninjafirewall-wp-edition-the-htninja-configuration-file/ |
 +===========================================================================================+
*/

if ( $_SERVER["REMOTE_ADDR"] == '1.2.3.4' ) {
   define('NFW_UWL', true);
   return 'ALLOW'; // whitelist
}

    Replace ‘1.2.3.4’ with the IP blocked by the firewall.

    You can’t whitelist from the backend in the free WP version because that’s part of a large set of options called “Access Control”, which is available in the WP+ premium only, I’m afraid.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Ninja Firewall blocks duplicator pro backup’ is closed to new replies.