Server IPv6 flagged as suspicious bot

  • Resolved noplanman

    (@noplanman)


    3 years ago

    Hi,

    The WordPress Ajax: [x] Protect admin-ajax.php against suspicious bots option should also take the server’s IPv6 into account.

    Our logs are filled with:
    MEDIUM - [IPv6:HERE] POST /wp-admin/admin-ajax.php - Blocked access to admin-ajax.php - [bot detection is enabled]

    I’ve added a whitelist rule to .htninja, but really this should be baked in.

    Thanks!

Viewing 1 replies (of 1 total)
  • Plugin Author nintechnet

    (@nintechnet)

    The firewall won’t block the request if the value of $_SERVER['SERVER_ADDR'] matches $_SERVER['REMOTE_ADDR'].
    Is $_SERVER['SERVER_ADDR'] an IPv6 when you access it from an IPv6?

Viewing 1 replies (of 1 total)
  • The topic ‘Server IPv6 flagged as suspicious bot’ is closed to new replies.