Hi @carlos-amigos, thanks for reaching out to us!
This sounds more like requests that the store or other plugins are making may be wrongly detected as false-positives, but this is fairly unusual after immediate install as Learning Mode should run for around 7 days after Wordfence is added to your site. Nevertheless, I recommend enabling it if it’s not currently turned on.
From the Wordfence Dashboard click on Manage WAF. Then you will see Basic Firewall Options > Web Application Firewall Status. Change the option to Learning Mode. Now perform the actions that were causing issues. This will help Wordfence learn that these actions are normal and it will allow them in the future. After you have finished performing the actions, switch the WAF from Learning Mode back to Enabled and Protecting. Now test to see if you still receive unwanted 503s.
Always be careful with IPs you add to Wordfence’s “Allowlisted IP addresses that bypass all rules” option because all Wordfence checks are bypassed for these that can be problematic for security should they ever be reassigned in future.
If the above doesn’t help, it could be worth checking if the IP detection on your site is working correctly. Take a look at Wordfence > Dashboard > Global Options > General Wordfence Options > How does Wordfence get IPs and cycle through the options there until it displays your current IP address as seen on https://whatsmyip.com/. That will be the setting you need to use going forward, so click the SAVE button once you’re done.
There are some further explanations of IP detection and which option to select if your site is using Cloudflare here: https://www.wordfence.com/help/dashboard/options/
Thanks,
Peter.
