Title: Ban Problem Last modified: August 30, 2016 --- # Ban Problem * Resolved [AirFlame](https://wordpress.org/support/users/airflame/) * (@airflame) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/) * I have a problem dont know how that happend. I have seen the user of the ip 142.54.184.181 is trying some exploits on my site. So i banned his range 142.54.184.0-142.54.184.255( no label) in simple firewall. But wehn i get up i checked in the morning that he try exploiting my site again with the same ip at night when i was sleeping. Is firewall suppose to block that guy ? * Screenshots: [http://postimg.org/gallery/2ndf26mdg/](http://postimg.org/gallery/2ndf26mdg/) * [https://wordpress.org/plugins/wp-simple-firewall/](https://wordpress.org/plugins/wp-simple-firewall/) Viewing 15 replies - 1 through 15 (of 21 total) 1 [2](https://wordpress.org/support/topic/ban-problem/page/2/?output_format=md) [→](https://wordpress.org/support/topic/ban-problem/page/2/?output_format=md) * Plugin Author [Paul](https://wordpress.org/support/users/paultgoodchild/) * (@paultgoodchild) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445429) * What activity have you be seeing exactly? * Thread Starter [AirFlame](https://wordpress.org/support/users/airflame/) * (@airflame) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445435) * Hey this activity: [http://s29.postimg.org/d3lh5ah9z/screenshot2.jpg](http://s29.postimg.org/d3lh5ah9z/screenshot2.jpg) * Plugin Author [Paul](https://wordpress.org/support/users/paultgoodchild/) * (@paultgoodchild) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445445) * Does that sort of traffic even touch WordPress itself? * Thread Starter [AirFlame](https://wordpress.org/support/users/airflame/) * (@airflame) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445516) * Yes it is. I ban my ip but i can still see and exploit all wordpress. It only show me i am blocked when i try to logging in… * Plugin Author [Paul](https://wordpress.org/support/users/paultgoodchild/) * (@paultgoodchild) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445566) * Do you have the setting in the Firewall enabled to ignore Administrators? * Thread Starter [AirFlame](https://wordpress.org/support/users/airflame/) * (@airflame) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445571) * Ignore Administrators setting is disabled. And firewall is on. * Plugin Author [Paul](https://wordpress.org/support/users/paultgoodchild/) * (@paultgoodchild) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445575) * Okay, can you be specific about the exact behaviour that you’re seeing that you don’t expect. The more specific details please, the better. * Thread Starter [AirFlame](https://wordpress.org/support/users/airflame/) * (@airflame) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445595) * I ban someone from simple firewall by ip or ip range. He can browse the site can check exploits on my site, what he cant do is log in to the site. I was expecting when i ban user by ip or ip range he is cut out from all page not only from login… * Plugin Author [Paul](https://wordpress.org/support/users/paultgoodchild/) * (@paultgoodchild) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445610) * The block doesn’t block visitors, it blocks visits that contain any sort of parameters. * If I’m a hacker and I load “[http://www.yourwebsite.com/”](http://www.yourwebsite.com/”);, there is nothing I can do there, because there are no parameters. I’m not posting login information, I’m not request an admin page, if I’m not logged in I’m not passing Cookies. * The firewall is optimized to not run if there are no request parameters. * Thread Starter [AirFlame](https://wordpress.org/support/users/airflame/) * (@airflame) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445615) * OK, but as i posted before i was able to run an exploit on my site even if the firewall was on and my ip was banned. So i think something not working here right… * Plugin Author [Paul](https://wordpress.org/support/users/paultgoodchild/) * (@paultgoodchild) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445620) * That isn’t a WordPress exploit – as far as I can see that URL doesn’t even touch wordpress * Plugin Author [Paul](https://wordpress.org/support/users/paultgoodchild/) * (@paultgoodchild) * [10 years, 9 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445621) * Could you also elaborate on the exact nature of the exploit – what is it exploiting? * Thread Starter [AirFlame](https://wordpress.org/support/users/airflame/) * (@airflame) * [10 years, 8 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445623) * I installed an plugin that have an exploit and i did get access to WP using an exploit. I had firewall on and ip ban so i think its exploiting. * Plugin Author [Paul](https://wordpress.org/support/users/paultgoodchild/) * (@paultgoodchild) * [10 years, 8 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445626) * This plugin does not block other plugin exploits. It blocks pathways for attack and exploitation. * It’s impossible to write a plugin that blocks the exploits of all other plugins. * Thread Starter [AirFlame](https://wordpress.org/support/users/airflame/) * (@airflame) * [10 years, 8 months ago](https://wordpress.org/support/topic/ban-problem/#post-6445628) * > It’s impossible to write a plugin that blocks the exploits of all other plugins. * I know but its possible to make BAN function to check if someone is banned when he visit the site. Not only if he try to login… I think i will just leave the topic no sense to post about not functioning BAN in this plugin. I will just install other BAN plugin that will BAN people when they try to enter my site instead only BAN them when they try to log in… Or just add them to .htaccess Viewing 15 replies - 1 through 15 (of 21 total) 1 [2](https://wordpress.org/support/topic/ban-problem/page/2/?output_format=md) [→](https://wordpress.org/support/topic/ban-problem/page/2/?output_format=md) The topic ‘Ban Problem’ is closed to new replies. * ![](https://ps.w.org/wp-simple-firewall/assets/icon-256x256.png?rev=3054572) * [Shield: Blocks Bots, Protects Users, and Prevents Security Breaches](https://wordpress.org/plugins/wp-simple-firewall/) * [Frequently Asked Questions](https://wordpress.org/plugins/wp-simple-firewall/#faq) * [Support Threads](https://wordpress.org/support/plugin/wp-simple-firewall/) * [Active Topics](https://wordpress.org/support/plugin/wp-simple-firewall/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wp-simple-firewall/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wp-simple-firewall/reviews/) * 21 replies * 2 participants * Last reply from: [Paul](https://wordpress.org/support/users/paultgoodchild/) * Last activity: [10 years, 8 months ago](https://wordpress.org/support/topic/ban-problem/page/2/#post-6445657) * Status: resolved