Title: Exclude plugin from Firewall list Last modified: December 28, 2021 --- # Exclude plugin from Firewall list * Resolved [ydwcom8585](https://wordpress.org/support/users/ydwcom8585/) * (@ydwcom8585) * [4 years, 4 months ago](https://wordpress.org/support/topic/exclude-plugin-from-firewall-list/) * I have a multi-vendor site using WCFM by WCLovers. My vendors are unable to make changes on products in their store as Wordfence is blocking them from doing so by giving them the spinning wheel of death. WCFM stated the issue is Wordfence, I tested it and sure enough it is. * Their advice was “just ensure that WCFM is not included in the Firewall list from wp – admin -> WordFence -> Tools menu.” * I cannot for the life of me figure out how to exclude the WCFM plugin from the Firewall. I thank you in advance for any help you can offer! Viewing 1 replies (of 1 total) * [WFSupport](https://wordpress.org/support/users/wfsupport/) * (@wfsupport) * [4 years, 4 months ago](https://wordpress.org/support/topic/exclude-plugin-from-firewall-list/#post-15214023) * Thanks for reaching out. * I’m not exactly sure where WCLovers came up with those instructions as there isn’t anything that would seem to address that specifically. What they may have meant is for you to filter Live Traffic to see “Blocked by Firewall” requests, then find one of the blocked IPs of the users and click on it which would open the expanded view. Once it expands you should be able to see a button that says“ Add param to firewall allowlist”. This would tell the firewall that the action is safe and expected and should allow it going forward. To make it easier you should reach out to one of the users and ask for their [public facing IP address](https://www.whatsmyip.org/) is so you can search for it. * What we usually recommend is putting the firewall into Learning Mode to fix the issue. From the Wordfence Dashboard click on Manage WAF. Then you will see ** Basic Firewall Options > Web Application Firewall Status**. Change the option to **Learning Mode**. Now perform the actions that were causing issues using a non-admin account. This will help Wordfence learn that these actions are normal and it will allow them in the future. After you have finished performing the actions, switch the WAF from Learning Mode back to **Enabled and Protecting**. Now test to see if these actions work correctly. * [https://www.wordfence.com/help/firewall/learning-mode/](https://www.wordfence.com/help/firewall/learning-mode/) is a good resource for learning more about the WAF and learning mode. * Let me know if this helps Viewing 1 replies (of 1 total) The topic ‘Exclude plugin from Firewall list’ is closed to new replies. * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865) * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/) * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq) * [Support Threads](https://wordpress.org/support/plugin/wordfence/) * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/) ## Tags * [exclude plugin](https://wordpress.org/support/topic-tag/exclude-plugin/) * [firewall](https://wordpress.org/support/topic-tag/firewall/) * 1 reply * 2 participants * Last reply from: [WFSupport](https://wordpress.org/support/users/wfsupport/) * Last activity: [4 years, 4 months ago](https://wordpress.org/support/topic/exclude-plugin-from-firewall-list/#post-15214023) * Status: resolved