Title: Firewall Options Causing Forbidden Errors Last modified: April 24, 2017 --- # Firewall Options Causing Forbidden Errors * Resolved [caravan](https://wordpress.org/support/users/caravan/) * (@caravan) * [9 years ago](https://wordpress.org/support/topic/firewall-options-causing-forbidden-errors/) * I am using All in One Security on an ecommerce website which uses woocommerce. * I have been having some issues which relate to some of the firewall settings in All in one security and I was wondering if there is a way to fix these without disabling certain features. * Firstly, I have been finding some 404 errors are being redirected to the 404 page but some of these are using parameters that are being tagged onto the end of the url by woocommerce which passes info about the traffic source. * EG. /404.html?page=/missingpageurl.html&from=https://www.google.co.uk/ * These url’s are displaying a Forbidden error page * To fix some of these occurrences I have had to disable the Advanced Character String Filter in Advanced Firewall Rules. Even though this is disabled, it fixes some url’s but not all. * Is there a way to allow these url’s through the firewall without having the ‘ Advanced Character String Filter’ fully disabled? * The second issue I have is that All in One Security is blocking customers who paid with Paypal and are being referred back to the website to the page url – / checkout/order-received/123456/?key=wc_order_12345678. They are then getting a Forbidden error page. Payments are being taken it is just the thank you page isn’t being displayed. * The cause of this seemed to be the 5G and 6G blacklist options. I have turned it off so it works but would prefer it to be enabled. * Is there a way to allow url referrals from Paypal to the thank you page without having to disabled the 5G and 6G options? Viewing 3 replies - 1 through 3 (of 3 total) * Plugin Contributor [mbrsolution](https://wordpress.org/support/users/mbrsolution/) * (@mbrsolution) * [9 years ago](https://wordpress.org/support/topic/firewall-options-causing-forbidden-errors/#post-9072186) * Hi, I have submitted a message to the developers to investigate further your issues. * For now please keep those settings disable until a solution is found. * Kind regards * Thread Starter [caravan](https://wordpress.org/support/users/caravan/) * (@caravan) * [9 years ago](https://wordpress.org/support/topic/firewall-options-causing-forbidden-errors/#post-9120159) * Has there been any response from the developers regarding this issue? * Plugin Contributor [wpsolutions](https://wordpress.org/support/users/wpsolutions/) * (@wpsolutions) * [9 years ago](https://wordpress.org/support/topic/firewall-options-causing-forbidden-errors/#post-9123870) * Hi [@caravan](https://wordpress.org/support/users/caravan/), What happens when you only have the 6G rule **enabled **and the “Advanced Character String Filter” and other rules **disabled**? * My recommendation is that if you are having some conflicts with some of the firewall rules then you should try and only use the 6G rule if possible and leave the other rules disabled. The 6G rule is the best overall firewall protection. Viewing 3 replies - 1 through 3 (of 3 total) The topic ‘Firewall Options Causing Forbidden Errors’ is closed to new replies. * ![](https://ps.w.org/all-in-one-wp-security-and-firewall/assets/icon-256x256. png?rev=2798307) * [All-In-One Security (AIOS) – Security and Firewall](https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/) * [Frequently Asked Questions](https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/#faq) * [Support Threads](https://wordpress.org/support/plugin/all-in-one-wp-security-and-firewall/) * [Active Topics](https://wordpress.org/support/plugin/all-in-one-wp-security-and-firewall/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/all-in-one-wp-security-and-firewall/unresolved/) * [Reviews](https://wordpress.org/support/plugin/all-in-one-wp-security-and-firewall/reviews/) * 3 replies * 3 participants * Last reply from: [wpsolutions](https://wordpress.org/support/users/wpsolutions/) * Last activity: [9 years ago](https://wordpress.org/support/topic/firewall-options-causing-forbidden-errors/#post-9123870) * Status: resolved