Login Lockout blocks the CDN IP address instead of the user IP address

  • Resolved stephroseg

    (@stephroseg)


    1 year, 7 months ago

    I use this plugin on a number of client websites – most of which don;t need the paid version usually.

    I have noticed on one site that is on AWS , and served via a lightsail CDN , that the login lockout feature seems to be blocking the IP of the CDN endpoint instead of the IP of the user.

    The site URL is https://getaboutable.com – it is a directory site with open registration, so we do manage a fair amount of spam and fake registrations and every so often a brute force attack happens.

    Any insights you could have as to settings or changes we can make to block the actual user IP for the failed logins would be great

    thanks !

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    Hi @stephroseg,

    Sorry for late reply, Go to WP Security > Settings > Advanced settings there you can cross check IP address detection settings.

    There you can choose a $_SERVER variable you would like to detect visitors’ IP address.

    Regards

    Thread Starter stephroseg

    (@stephroseg)

    perfect ! thank you so much for the reply.

    • This reply was modified 1 year, 7 months ago by stephroseg. Reason: marking as closed
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Login Lockout blocks the CDN IP address instead of the user IP address’ is closed to new replies.