Temporarily Limited Block message for VPN employee

  • Resolved xxaimsxx

    (@xxaimsxx)


    1 year, 3 months ago

    Hello, we’ve been using Wordfence for our websites. One website we have, we would occassionally get a “Your access to this site has been temporarily limited by the site owner” for employees who tried to login as admin when they are VPN’d in.

    I am always logged in via VPN and don’t have any issues getting into the website but other employees within my dept can get in sometimes and sometimes can’t.

    What settings can I update to make it so that they do not run into this issue in the future?

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @xxaimsxx, thanks for reaching out about this.

    Like your own experience with the VPN, Wordfence doesn’t block VPN or Tor activity by design, mainly because this traffic is almost indistinguishable from regular traffic.

    When a block occurs for one of your colleagues, I would immediately check the Live Traffic page, which you can further filter by IP if you know which one they were assigned at the time. Expanding an entry by clicking it should give more detailed information in red text about why they were caught. A strict Wordfence setting, or coincidentally being part of an IP range you (or we, as part of the global blocklist of known malicious IPs) could be a possible reason for the block.

    If there are any messages from Live Traffic that you need any assistance with, please feel free to paste them here so we can take a look.

    Thanks,
    Peter.

    Thread Starter xxaimsxx

    (@xxaimsxx)

    @wfpeter

    Thank you for this. I did whitelist our VPN IP address “just in case”.

    When I looked further into the issue of why she was having issues, it showed the reason as “wrong username” but she’s always used that username to login. So I’m at a lost there.

    Typically you can login with the set username or the email address and she’s always used her email address. Would you have any idea?

    Amy

    Plugin Support wfpeter

    (@wfpeter)

    Hi @xxaimsxx, thanks for getting back to me.

    The username of the account itself is highlighted in WordPress > Users > All Users and sometimes the “Username” column is something different to the “Email” column in the table. That may catch out rules like Wordfence > All Options > Brute Force Protection > Immediately lock out invalid usernames. If this is enabled, you could try turning this off to see if they can regain access.

    Thanks,
    Peter.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Temporarily Limited Block message for VPN employee’ is closed to new replies.