Optimizing WordFence Firewall

  • Resolved saltywd

    (@saltywd)


    6 years, 10 months ago

    So when I am trying to Optimize the Firewall, I go through all the selections of downloading the htaccess and user.ini and then select the recommended Apache + CGI/FastCGI and then hit continue it says it installed successfully, I even checked and there is an “auto_prepend_file” but seems to lead to a file outside of the norm. I would like to give you access to my WordPress site and see what you can see and if possible assist me in fixing this issue. So I had my hosting company assist me in trying something to help fix this issue. As it never GOES INTO Optimized Firewall, it says to give it 5 minutes or so, but nothing ever happens.

    So my hosting company tried this:
    So, I am doing a test to see if forcing our php-fpm service to put php errors on a file called php-error.log in your www folder will fix this issue.

    It did not fix the issue.

    Can you please assist in this matter, as I have 3 other websites that are on the same hosting and do exactly the same. Thanks

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)
  • Thread Starter saltywd

    (@saltywd)

    PHP version 7.0.27
    Server Apache + FPM/FastCGI

    WHEN I GO TO DIAGNOSTICS TAB, everything is Green and has Green Checks marks all the way down the page. I can send you a link to the System Config that WordFence gives if you like in a private message or I can give you access to WordPress to view everything. Thanks

    Thread Starter saltywd

    (@saltywd)

    Here is part of the System Configuration

    Core
    PHP Version 7.0.27
    Directive Local Value Master Value
    allow_url_fopen On On
    allow_url_include Off Off
    arg_separator.input & &
    arg_separator.output & &
    auto_append_file no value no value
    auto_globals_jit On On
    auto_prepend_file /data/www/html/n/nicholsonhouse.com/www/wordfence-waf.php no value

    It is an FPM System Configuration on the Server side so it could be this I assume:

    In rare cases, when a host uses PHP-FPM, they may have PHP settings defined in a “pool” file. These settings can override options set in your custom php.ini or .user.ini file. You may need to ask the host if they have settings in the pool file. The default location for the pool file on new Ubuntu servers is similar to /etc/php/7.0/fpm/pool.d/www.conf (depending on the PHP version) and an example of an option that would override your auto_prepend_file option is php_admin_value[auto_prepend_file] = none. If the host is able to remove this option, it should allow your settings to be used for the firewall.

    I will check it

    Hi @saltywd
    May I know which hosting provider your website is hosted at?

    Please try deactivating other installed plugins then reconfigure the firewall again following the recommended server configuration detected.

    It will be helpful to get a diagnostics report from your website, please go to (Wordfence > Tools => Diagnostics) and click on “Send Report by Email” button at the top of the page, you can send the report to “alaa [at] wordfence [dot] com”, make sure to include your forum username, I will take a look at this report and let you know my findings.

    Thanks.

    From my experience, I was never able to do all this as an end user, luckily my web host is used to Wordfence and did a nice job of getting it all working with just my simple request of “Wordfence, please.” Point being, cut bait if you find yourself spending too much time, perhaps you can get some help from your provider. MTN

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Optimizing WordFence Firewall’ is closed to new replies.