Firewall Optimization at A2 Hosting

  • Resolved Jim

    (@jwmc)


    5 years, 8 months ago

    Sorry to come back to the trough so soon – I just switched providers to A2 Hosting so a lot of things coming up.

    When I went to optimize the firewall, WF suggested the setting “Litespeed/lsapi”. I went ahead and it quickly reported it was optimized. I wasn’t sure if that meant only it was able to make the changes, or that it was really detecting that the changes were having the desired effect.

    So I asked the hosting support folks, listing all the WF options. They said, based on the info I provided, the appropriate setting was “Apache+mod_php”. So I removed “Extended Protection” and did it again with that setting. WF kept waiting and it never said it worked, and when I cleared the dialog it showed not optimized. So I reverted to Litespeed/lsapi.

    I looked at php info on the server and found these entries:
    System: Linux
    Server API: Litespeed V7.7
    (variable) $_SERVER[‘SERVER_SOFTWARE’]: Apache

    So which should I be using, or does it require some kind of manual change like the ones in https://www.wordfence.com/help/firewall/optimizing-the-firewall/

    Thanks!

    The page I need help with: [log in to see the link]

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Support WFAdam

    (@wfadam)

    5 years, 8 months ago

    Hello @jwmc and thanks for reaching out to us!

    Wordfence will treat A2 Hosting as a LiteSpeed server in order to optimize the firewall. If you check your .htaccess file, you will need this code in there.

    <IfModule LiteSpeed>
php_value auto_prepend_file '/path/wordfence-waf.php'
</IfModule>
<IfModule lsapi_module>
php_value auto_prepend_file '/path/wordfence-waf.php'
</IfModule>

    Make sure that you change /path/ to the correct path to your wordfence-waf.php file. That should optimize the firewall for you, but this code might already be in your .htaccess file, so I would just check to make sure.

    Let me know what you find!

    Thanks!

    Thread Starter Jim

    (@jwmc)

    5 years, 8 months ago

    Yes, that code is in .htaccess with the correct path. In addition, there is this after it:

    <Files ".user.ini">
<IfModule mod_authz_core.c>
	Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
	Order deny,allow
	Deny from all
</IfModule>
</Files>

    I wonder what the reference to .user.ini is about. There is such a file, with
    auto_prepend_file = '/home/forestpa/public_html/wordfence-waf.php'
    I’m not sure if that is left from my attempt at using Apache+mod_php, or it should still be there.

    Thanks!

    Plugin Support WFAdam

    (@wfadam)

    5 years, 8 months ago

    You can leave that there @jwmc

    Are you able to scan and use all the free features without any issues?

    Let me know what you find!

    Thanks!

    Thread Starter Jim

    (@jwmc)

    5 years, 8 months ago

    Yes, everything Wordfence is working awesomely. Many thanks!

    Plugin Support WFAdam

    (@wfadam)

    5 years, 8 months ago

    Glad we could resolve this together @jwmc

    If you have any other questions or issues, always feel free to open another topic here!

    Thanks again for your support!

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘Firewall Optimization at A2 Hosting’ is closed to new replies.