All In One WP Security And Firewall Blacklist Manager shows you how to block IP addresses, enter IP ranges add user agents and much more.
Last Updated: April 2, 2019
Latest News: I updated a link in the end of the documentation.
The Blacklist feature allows you to ban IP addresses , ranges and user agents. This helps you when you constantly get hackers repeatedly trying to access your site from the same IP address. When you enable this feature, the IP addresses you block are added to your .htaccess file. Adding these entries to your .htaccess file is one of the most secure first line of defence.
Note: If you are interested in block countries from your site then check out the following URL country-blocking-addon.
All In One WP Security And Firewall Blacklist Manager
Step 1 ) Click on WP Security -> Blacklist Manager to ban IP address and User Agents. The following image shows you the features you need to enable.
- Enable IP or User Agent Blacklisting:
- Enter IP Addresses:
- Enter User Agents:
- Click on Save Settings button when you finish settings up this feature.
This will add another 15 points score towards your security meter. See image below. (Intermediate Security Level)
Troubleshooting Blacklist Manager
Q1 ) I am having issues with the Black list feature. I think it is not blocking the IP address I add. What can I do to test this feature?
Solution: To confirm if the blacklist feature works try using your IP address to block yourself temporarily. (Solution provided by wpsolutions.)
Note: If the blacklist is working properly you will see a “403 Forbidden” error whenever anyone with a blacklisted IP address attempts to access your site.
1) Make sure you are logged into your server using FTP. This will be handy to unlock yourself if needed.
2) Log into WordPress admin panel and add your IP address to the blacklist settings.
3) Try accessing your site from a browser where you are not logged in.
You should be denied access. If not, then the apache directives are not working on your server.
(If things are working fine and you do get blocked, just FTP your .htaccess file from your server to your computer and edit that file and remove the part of the code which has your IP address and then FTP the file back to the server)
Q2 ) Is there a limit to the number of IP addresses you can add to the Blacklist Manager in this plugin?
Solution One: No
Q3 ) I’ve entered IP addresses into Blacklist Manager and checked the checkbox, but those IP addresses are still trying to log into the site. They also don’t appear in Dashboard => Permanent Block List.
Solution one: The “Permanent Block List” is not related to the “Blacklist Manager” feature.
The Blacklist Manager uses .htaccess rules and the permanent blocklist uses PHP. The permanet blocklist currently only allows the addition of IP addresses via the SPAM Prevention -> Comment SPAM IP Monitoring menu. (Solution provided by wpsolutions.)
Click on the following link Firewall Rules to continue configuring the plugins settings.
If you have any questions please let me know
All In One WP Security & Firewall Plugin Tutorial List