Plugin Support
WFAdam
(@wfadam)
Hello @intelconcepts and thanks for reaching out to us!
It sounds like your IP detection could be incorrect.
To double-check your IP detection is correct, first, check the following site and take note of your IP – (note that this detection can sometimes not be 100% accurate on cellular phone network connections): https://www.whatsmyip.org.
Then, head over to your site and go to Wordfence > All Options > General Wordfence Options > How does Wordfence get IPs and reference the area under that section that says Detected IPs and Your IP with this setting. Start from the top and check to see if any of the settings show that both of those show the same IP as the site above does.
If you’re using Cloudflare, you will most likely need to select “Use the Cloudflare “CF-Connecting-IP” HTTP header to get a visitor IP. Only use if you’re using Cloudflare.”.
Let me know if this helps!
Thanks!
Hi @wfadam
I did play around with these settings initially, all settings detect a single ip except for the option Use the X-Forwarded-For HTTP header. Only use if you have a front-end proxy or spoofing may result.. With this option selected I get multiple detected ips, the first ip listed is my ip, which is the correct detected ip, but then the single ip is listed in bold twice after this ip.
Being that essentially 2 ip’s are being detected is there a priority to the detected ip’s?
I will test a lockout to determine whether this is the appropriate setting and update with my findings.
Hi @wfadam
I’ve tested with the Use the X-Forwarded-For HTTP header. option but the issue still persist. Please advise as to what if anything can be done to get an accurate detected ip while using the WAF from Signal Sciences.
Thanks
Plugin Support
WFAdam
(@wfadam)
Hello again @intelconcepts
Can you send a diagnostic report to wftest @ wordfence . com? You can find the link to do so at the top of the Wordfence Tools > Diagnostics page. Then click on “Send Report by Email”. Please add your forum username where indicated and respond here after you have sent it.
A diagnostic report will give me a little more information on what might be causing the issue.
Thanks!
Plugin Support
WFAdam
(@wfadam)
Thanks for sending those reports @intelconcepts
Looking at a few things that could be wrong here. The first thing I noticed was:
File System-
Checking if web server can write to ~/plugins/wordfence = FAIL
Checking if web server can write to ~/wp-content/wflogs = No Files Writable
You will want to check into why these cant access those files.
The next thing I noticed is that the IP detection is incorrect like we thought. The diagnostic thinks your personal IP is actually that of Amazons, which is your host right?
I noticed that your X-Forwarded-For is displaying 3 IP addresses when it should only be displaying your personal IP address if this was working correctly.
I would check with your host to make sure everything seems to be connecting properly to your site. They should be able to review your IP address and see why your X-Forwarded-For isn’t working.
Let me know what you find!
Thanks!
