Need Help?

Our experts will login to your server within 30 minutes to fix urgent issues.

We will keep your servers stable, secure and fast at all times for one fixed price.

Call Us! 1-800-383-5193
Call Us! 1-800-383-5193

Need Help?

Our experts will login to your server within 30 minutes to fix urgent issues.

We will keep your servers stable, secure and fast at all times for one fixed price.

Access Denied – Sucuri Website Firewall error : How we resolve?

Trying to resolve the error ‘Access Denied – Sucuri Website Firewall’? We can help you with it.

The Sucuri Firewall is a cloud-based web application firewall. It blocks any hacks and attacks on the website instantly.

At Bobcares, we often get requests from our customers to fix this error as a part of our Server Management Services.

Today, let’ see how our Support Engineers fix this error.

Why does ‘Access Denied – Sucuri Website Firewall’ error occurs?

Sucuri Firewall is one of the best WordPress security plugins. Moreover, its main focus is on protecting the server and WordPress website.

Also, it protects the website from external attacks keeping the website safe.

In case, if the website blocks the Sucuri IP addresses unknowingly then access denied errors show up on the website.

For instance, the error message appears as shown below.

Access Denied Sucuri Website Firewall WordPress

 

How easily we fix it?

At Bobcares, where we have more than a decade of expertise in managing servers, we see many customers face problems with this error.

Now, let’s see how our Support Engineers fix this error.

Recently, one of our customers approached us with the error ‘Access Denied – Sucuri Website Firewall‘. He received this error while accessing his website.

On checking, we found that the user had a Sucuri firewall set on his WordPress. And this was blocking its own IP address due to which access denied error was displaying on the website.

So, we whitelisted the Sucuri IP addresses by adding them to the .htaccess file.

Here is the code that we used in the .htaccess file.

<FilesMatch ".*">
Order deny,allow
Deny from all
Allow from 192.88.134.0/23
Allow from 185.93.228.0/22
Allow from 66.248.200.0/22
Allow from 208.109.0.0/22
Allow from 2a02:fe80::/29
</FilesMatch>

Thereafter, we restarted the Apache service.

service httpd restart

Finally, this resolved the error.

 

Whitelisting with IPtables

In addition, we also whitelist the IP addresses in the server according to the firewall used. In case, if we are using IPTables then we will whitelist the IP addresses of Sucuri in IPTables firewall.

For example, we assistedto whitelist the range of IP address in IPTables as follows.

Initially, we Logged into the server via SSH.

Thereafter, we allow incoming connections from 192.88.134.0/23

iptables -A INPUT -i eth1 -s 192.88.134.0/23 -j ACCEPT

Then allow outgoing connections to 192.88.134.0/23

iptables -A OUTPUT -i eth1 -d 192.88.134.0/23 -j ACCEPT

Thus, we whitelist the range of IP address. Here we have to whitelist the rest of IP address range of Sucuri as above.

 

[Need any assistance with this error? – We’ll help you]

 

Conclusion

In short, the error ‘Access Denied – Sucuri Website Firewall’ occurs when the Sucuri IP address is blocked in the server. Today, we saw how our Support Engineers fixed this error by whitelisting the Sucuri IP address.


PREVENT YOUR SERVER FROM CRASHING!

Never again lose customers to poor server speed! Let us help you.

Our server experts will monitor & maintain your server 24/7 so that it remains lightning fast and secure.

GET STARTED

Submit a Comment

Your email address will not be published. Required fields are marked *

Privacy Preference Center

Necessary

Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

PHPSESSID - Preserves user session state across page requests.

gdpr[consent_types] - Used to store user consents.

gdpr[allowed_cookies] - Used to store user allowed cookies.

PHPSESSID, gdpr[consent_types], gdpr[allowed_cookies]
PHPSESSID
WHMCSpKDlPzh2chML

Statistics

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

_ga - Preserves user session state across page requests.

_gat - Used by Google Analytics to throttle request rate

_gid - Registers a unique ID that is used to generate statistical data on how you use the website.

smartlookCookie - Used to collect user device and location information of the site visitors to improve the websites User Experience.

_ga, _gat, _gid
_ga, _gat, _gid
smartlookCookie

Marketing

Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.

IDE - Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

test_cookie - Used to check if the user's browser supports cookies.

1P_JAR - Google cookie. These cookies are used to collect website statistics and track conversion rates.

NID - Registers a unique ID that identifies a returning user's device. The ID is used for serving ads that are most relevant to the user.

DV - Google ad personalisation

IDE, test_cookie, 1P_JAR, NID, DV, NID
IDE, test_cookie
1P_JAR, NID, DV
NID
hblid

Security

These are essential site cookies, used by the google reCAPTCHA. These cookies use an unique identifier to verify if a visitor is human or a bot.

SID, APISID, HSID, NID, PREF
SID, APISID, HSID, NID, PREF