Probing and request from own server ip

  • HI,

    This plugin is great and we will be buying the pro version but I wanted to ask a question before we buy in case it’s just not compatible.

    We direct all traffic through Sucuri firewall which has its own ip address however, we continually get the ‘probing from vulnerable code’ and requests to all sorts from our own server ip address.

    I just wanted to ask why is it our ip address and should these probes or requests not be showing the ip address from whatever country they originate from?

    Kind regards,

    Paul

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Author gioni

    (@gioni)

    Hi! You need to follow instructions at step #1 here: https://wpcerber.com/getting-started/

    Thread Starter kepbem

    (@kepbem)

    HI Gioni,

    Many thanks for getting back to me.

    I have gone through this document already however this is not the issue, I’m not explaining myself correctly.

    Our web host server has a dedicated ip off x.x.x.x and it’s this ip address that is being listed by cerber as attacking the site, probing, failed logins etc.

    I am not talking about the ip address of my pc or network.

    Would screenshots help any to explain what I mean?

    Kind regards,

    P

    Plugin Author gioni

    (@gioni)

    Do you see different IP addresses (not one) in the log and only some of the events were logged with your server IP address?

    Thread Starter kepbem

    (@kepbem)

    HI,

    Apologies, I do not seem to be able to find a log file. It does say a log file has not been created yet under Tools > log tab > The log file has not been created yet.

    Under the activity tab on the main dashboard, under the IP tab, it always shows our server ip address and under the hostname tab, it shows our secure.examplewebsite.com address. Then further over it shows failed logins, or probing for vulnerable code etc.

    I assumed that the ip tab would show the ip address from the ‘attacker’?

    Regards,

    Paul.

    Plugin Author gioni

    (@gioni)

    I’m sorry that I wasn’t clear. I mean the event log on the Activity tab. So if you see only one IP address (your server IP) for all logged events, the plugin is unable to detect IP addresses correctly and you have to follow instructions at step #1 here: https://wpcerber.com/getting-started/

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Probing and request from own server ip’ is closed to new replies.