Blacklist, is it working

Hi @spook68,
If the blacklist is working properly you will see a “403 Forbidden” error whenever anyone with a blacklisted IP address attempts to access your site.

It looks like currently on your site the rules are not being triggered.
I recommend that you firstly check the .htaccess file and examine its contents to make sure that the blacklist rules have been written to it.

Also you should ask your support people why your .htaccess file rules do not seem to be working.

Have you also tried to re-save your permalink settings?

Apache version > 2.4.34 (last check Sep 10)

Part of .htaccess:
# Apache >= 2.3
<IfModule mod_authz_core.c>
<RequireAll>
Require all Granted
Require not env bad_bot
#AIOWPS_IP_BLACKLIST_2_4_START
Require not ip *.*.*.*
Require not ip 91.210.147.80
..
..
#AIOWPS_IP_BLACKLIST_2_4_END

</RequireAll>
</IfModule>
</IfModule>
#AIOWPS_SIX_G_BLACKLIST_END

The IP address that should be blocked is in the list.

I did check from another IP address with a blocked user name. The “403 forbidden” did not happen, just a site notification that the password was wrong.

Can you explain what you mean with “re-save your permalink settings”? I cant find that function.

I checked with my ISP and the .htaccess should be working ok.
The list in the .htaccess file is called by a script and /or setting I presume. How can I check this is working?

The list in the .htaccess file is called by a script and /or setting I presume. How can I check this is working?

The .htaccess file directives are executed by the Apache process.

If you wanted to test this you can ask a friend to help you by getting their IP address and adding it to the blacklist settings. Then simply ask them to try and visit your site.

Can you explain what you mean with “re-save your permalink settings”? I cant find that function

What I meant was that you try and go to your wordpress site permalink settings found here:
Settings >> Permalinks
Then simply hit the save button to re-save these settings.

I tried the following:
* Settings >> Permalinks : saved again
– No result
* Tried to log in with a user account on the instant logout list:
– The login page appears again with a error message of wrong account/password and I’m able to login again.
* Added an IP address to the blacklist and tried to login from the blacklisted IP address
– I can login & can uses the administrator account to edit the site

Is this normal behavior?
If not what can be causing these errors?

Hi,

* Added an IP address to the blacklist and tried to login from the blacklisted IP address
– I can login & can uses the administrator account to edit the site

Is this normal behavior?

No, that is not how the Blacklist feature works. Something in your site is not allowing the plugin to block your IP address. Can you try the following. Disable all other plugins except AIOWPS, then make sure your IP address is Blacklisted. After try to log in again using the Blacklited IP address? Let us know what happens.

Thank you

– I put the IP of my iPhone in the Blacklist.
– Only AIOWPS is active.
– When I try to reach the site it is possible to load the home page and other pages
– I re-checked the IP of the iPhone and it is still the same.

Hi,

– I put the IP of my iPhone in the Blacklist.

Is the IP address coming from your router/modem at home? Or are you connecting directly using your iPHone carrier? What is your iPHone IP address?

Regards

• This reply was modified 5 years, 11 months ago by mbrsolution.

Hi,
Why have you got the following in your .htaccess file?

Require not ip *.*.*.*