Bobcares

Wordfence whitelist IP address: How we add it?

by | Mar 4, 2020

Need assistance in the Wordfence whitelist IP address option?

Wordfence is a security plugin for WordPress that help site owners to protect their sites from attacks.

However, many times it may even block legitimate users too.

At Bobcares, we often get requests from our customers to whitelist valid IP addresses as part of our Server Management Services.

Today, let’s get into the details on how our Support Engineers help our customers with the whitelisting request.

 

Wordfence: A security plugin

Wordfence firewall is a PHP based, an application-level firewall that filters out malicious requests to the website.

It blocks malicious attacks and alerts the user with messages like ‘Background Request Blocked‘, ‘Wordfence has limited your access to this site‘, etc.

We can whitelist or block the IP address for securing the website.

 

Various reasons for Wordfence to Block

We can now go through the different cases in which Wordfence blocks the website access.

1. ‘You are temporarily locked out’: This message means that the user’s IP address has been blocked because the login attempt violated a Brute Force rule in Wordfence. Hence login with an invalid username or due to more attempts of login than allowed caused the block.

2. ‘Your access to this site has been limited‘: This means the user’s IP address has been blocked by the Wordfence Firewall by an option configured by the site owner. There will be a “Reason” describing the actual cause for the block. This may be Country Blocking or Rate Limiting etc.

3. 403 Forbidden: It means the user’s IP address is on the Wordfence IP Blacklist. This blacklist contains the top number of IP addresses that are currently engaged in attacks on WordPress websites.

However, to avoid false positives, WordPress site owners often white-list their IP addresses to avoid such blocks.

 

How does Wordfence whitelist IP addresses?

At Bobcares, where we have more than a decade of expertise in managing servers, we see many customers requesting to whitelist IP in Wordfence.

Now, let’s see how our Support Engineers help the customers with the request.

Most probably IP address block can be due to violating Brute Force rule in Wordfence in login attempt or any suspicious access from a particular IP address.

Frequently, many customers approach us and enquire that a particular IP address has been blocked and wants to know the exact reason.

Then, we ask for their public IP address and the logins to the dashboard of WordPress.

We also assist the customer in tracing their public IP address by simply browsing ‘IP’ in google.

After obtaining the public IP address, and logins we check for POST attempts in access logs from the corresponding IP address.

We follow the below steps to add the IP address in the Wordfence.

1. Initially, we log into the WordPress dashboard (wp-admin page).

2. After that navigate to the Wordfence option and select it.

Wordfence whitelist IP

3. Then from the drop-down select the Firewall option.

4. We then select the All Firewall Options from the screen which open.

5.  Then a new window opens which holds a box in the top which as “Whitelisted IP addresses that bypass all rules”  pop up. Here we add the user’s public IP address in the new line of the box.

Wordfence whitelist IP

Finally, Save Changes in the box at the top right side.

Here, Wordfence blindly trusts access from whitelisted IP addresses. Therefore, our Dedicated Engineers always advise customers to keep their home computer/laptop free from malware, virus, etc. Otherwise, it can create problems on the live website.

 

[Still having the problem with whitelisting IP address in Wordfence?- We’re available 24/7.]

 

Conclusion

In short, Wordfence is a security plugin that secures the website from malware attacks. Today, we saw how our Support Engineers help the customers to whitelist their IP address for not getting locked out further.

PREVENT YOUR SERVER FROM CRASHING!

Never again lose customers to poor server speed! Let us help you.

Our server experts will monitor & maintain your server 24/7 so that it remains lightning fast and secure.

GET STARTED

var google_conversion_label = "owonCMyG5nEQ0aD71QM";

2 Comments

  1. Ship me this

    It is locked so how can I login to the dashboard

    Reply
    • Arya MA

      Hi there,

      Wordfence offers an option to send an email to unlock your own access. You may also try deactivating the Wordfence plugin over ftp by renaming the wordfence folder at “/wp-content/plugins/wordfence/”. If you still find problems, we’ll be happy to talk to you on chat (click on the icon at right-bottom).

      Reply

Submit a Comment

Your email address will not be published. Required fields are marked *

Never again lose customers to poor
server speed! Let us help you.

Privacy Preference Center

Necessary

Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

PHPSESSID - Preserves user session state across page requests.

gdpr[consent_types] - Used to store user consents.

gdpr[allowed_cookies] - Used to store user allowed cookies.

PHPSESSID, gdpr[consent_types], gdpr[allowed_cookies]
PHPSESSID
WHMCSpKDlPzh2chML

Statistics

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

_ga - Preserves user session state across page requests.

_gat - Used by Google Analytics to throttle request rate

_gid - Registers a unique ID that is used to generate statistical data on how you use the website.

smartlookCookie - Used to collect user device and location information of the site visitors to improve the websites User Experience.

_ga, _gat, _gid
_ga, _gat, _gid
smartlookCookie
_clck, _clsk, CLID, ANONCHK, MR, MUID, SM

Marketing

Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.

IDE - Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

test_cookie - Used to check if the user's browser supports cookies.

1P_JAR - Google cookie. These cookies are used to collect website statistics and track conversion rates.

NID - Registers a unique ID that identifies a returning user's device. The ID is used for serving ads that are most relevant to the user.

DV - Google ad personalisation

_reb2bgeo - The visitor's geographical location

_reb2bloaded - Whether or not the script loaded for the visitor

_reb2bref - The referring URL for the visit

_reb2bsessionID - The visitor's RB2B session ID

_reb2buid - The visitor's RB2B user ID

IDE, test_cookie, 1P_JAR, NID, DV, NID
IDE, test_cookie
1P_JAR, NID, DV
NID
hblid
_reb2bgeo, _reb2bloaded, _reb2bref, _reb2bsessionID, _reb2buid

Security

These are essential site cookies, used by the google reCAPTCHA. These cookies use an unique identifier to verify if a visitor is human or a bot.

SID, APISID, HSID, NID, PREF
SID, APISID, HSID, NID, PREF