- Whitelist IP Addresses
- Blacklist IP Addresses
- Whitelist URL Paths
- Blacklist URL Paths
- Block User-Agents
- Block HTTP Cookies
- Block HTTP Referers
- Protected Pages
- Geo Blocking
-
Whitelist IP Addresses
This option allows you to whitelist trusted IP addresses that will not be blocked by some of our security rules. Any IP address listed here will also have access to the administration panels like "administrator" or "wp-admin" if you have it restricted to only trusted IP addresses on the security settings. -
Whitelist URL Paths
If a specific URL is being blocked by our Website Firewall, you can whitelist it. For example, if you need to use TimThumb and our hardening is preventing that, you can allow its path, (e.g. "/wp-content/themes/my_theme/timthumb.php")
If you are unsure, please ask our support team who will be happy to help.
URL Path another-path test-path testpath1234 -
Block User-Agents
In computing, a user agent is a software agent that is acting on behalf of a user. The format of the User-Agent string in HTTP is a list of product tokens (keywords) with optional comments. For example, if a user's product were called WikiBrowser, their user agent string might be
WikiBrowser/1.0 Gecko/1.0. The most important product component is listed first.User Agent test/2.1 -
Block Cookies
A cookie is a small piece of data sent from a website and stored in a user's web browser while the user is browsing that website. Every time the user loads the website, the browser sends the cookie back to the server to notify the website of the user's previous activity.
Cookie Name social_network_session -
Blacklist IP Addresses
This option allows you to ban an IP address from visiting your web site.IP Address 8.8.8.8 Edit Note
this is an example note
127.0.0.1
Expires on: 11/12/2018 12:47 EST
127.1.0.1
Expires on: 11/13/2018 09:49 EST
-
Blacklist URL Paths
If you have any URL that you want to block access to, you can add it here. Only whitelisted IP addresses will be allowed to visit them. This can be useful if you want to restrict access to certain pages or content.
URL Path _private/ajax.php test/test.php -
Block HTTP Referers
HTTP referer (originally a misspelling of referrer) is an HTTP header field that identifies the address of the webpage that linked to the resource being requested. By checking the referer, the new webpage can see where the request originated. When a user clicks a hyperlink in a web browser, the browser sends a request to the server holding the destination webpage. The request includes the referer field, which indicates the last page the user was on.
HTTP Referer google.com another-example.com demo.net -
Protected Pages
This option allows you to protect certain pages with a passcode or using two factor authentication. You can use this option if you want to restrict access to certain pages and even as a secondary authentication on your admin panels. We support simple passwords or Google Authenticator.
For example, you can add "/wp-login.php" and before anyone can access it, they will be requested the generated passcode or 2FA (Two Factor Authentication) token.
URL Path Auth Type index.php Password keLd5U7nm7ntkmj65734login.php Google Auth Scan this QR Code to get the secret key that will give you access to this path, or if your phone has no camera, select "Counter-Based Mode" and use the following key:
GHX7KGTHKAA5NREZ
You will need to Install Google Authenticator to use this option.
test.html Captcha ip-restriction.html IP Restriction -