777sm-casino online games,Wow88 malaysia withdrawal fee.Recharge Every day and Get Bonus up-to 50%!

Resolved wbenterprises
(@wbenterprises)

2 years, 1 month ago

Why does my Wordfence randomly start blocking these URLs?

https://www.website.com/?wordfence_syncAttackData=##########.####
AND
https://www.website.com/wp-cron.php?doing_wp_cron=##########.######################

The IP address is my provider. It’s not a random visitor or my own computer. It will just start up out of the blue, no apparent rhyme or reason, and starts to give a ton of 503 errors.

NOTE: It’s may be related to leaving open the “Live Traffic” view because it appears to repeat itself whenever the page refreshes automatically. What do you think is happening?

I also tried to input the IP address into the “Ignored IP addresses for Wordfence Web Application Firewall alerting” but it ignores it. It’s an IPv6 and I put both the shortened version from the log, and the extended version in this field.

Thank you.

Viewing 3 replies - 1 through 3 (of 3 total)

Plugin Support wfphil
(@wfphil)

2 years, 1 month ago

Hi @wbenterprises

You can use the advanced IP address filter on the Live Traffic page to see all the hits for the IP address.

Make sure you have enabled the Expand All Results switch.

Now look for any blocking in red and let me know what the block reasons are please.

Please remove the IP address from the option Ignored IP addresses for Wordfence Web Application Firewall alerting. That only prevents email alerts being sent about blocking for that IP address.

Thread Starter wbenterprises
(@wbenterprises)

2 years, 1 month ago

Hello,

The reason listed was “blocked for accessed to a banned URL.” At first, I thought how is this possible because that folder does not exist on my server. But, then as I investigated further, there was a bad rule created (by me).

There was a rule which blocked “/wp-json/*” access. Even though this folder does not exist on the server, I believe it is used for communication between WP and other applications. I have removed this rule and will see if the issue reoccurs. I hope this fixes it, and I hope this conversation helps anyone else in the future!

Plugin Support wfphil
(@wfphil)

2 years, 1 month ago

Hi @wbenterprises

Thank you for the update.

wp-json is not a directory but would make up part of a request for the WordPress REST API.

If the rule removal doesn’t work then you can test removing all of your banned URL rules in case there are other ones that have been added incorrectly.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘syncAttackData?’ is closed to new replies.