wfasa
Forum Replies Created
-
Hi @britand,
Sorry if I’m stating something obvious here but have you made sure to completely remove the Wordfence plugin when you reinstall? Please1. Make sure the “wordfence” folder in wp-content/plugins is removed
2. Make sure all Wordfence database tables are removed
3. Delete the “wflogs” folder located in wp-content manually if neededAdditionally, please check to make sure you don’t have any WordPress tables that are very bloated on this site. Specifically I’d check to make sure wp_options table isn’t bloated. You can compare the number of rows in that table to the number of rows wp_options have on any other WordPress install (such as the one you have that is working fine).
Hi @urbndesignz,
Please create your own support thread and supply the full error message. Thanks!Hi again!
I checked your diagnostics anyways, your server API is “CGI/FastCGI” which means the Firewall optimization should work with no need for manual action in most cases. Sounds like you’re good now though so that’s good to hear. Thanks for the update!
Hi @kickthefog!
Okay, thanks for the update! I did not expect that to fix itself but that’s great news. Best of luck for now!
Hi folks!
If you were on Heart, reg-123 or GreenWebHost hosting, this issue should now be resolved. Let us know if you’re still having problems!Hi @dozza,
If you were on Heart or reg-123 hosting, this issue should now be resolved. Let us know if you’re still having problems!Hi @singingcyclist,
That’s good news, thanks for the update. We still may have some sorting out to do to make sure Wordfence runs fine on Heart hosting and doesn’t cause any issues but I’ll keep working with Heart on that. Thanks to you as well for reporting this and helping us understand the situation.Hi @mross55,
Okay, it sounds like there may be multiple proxies involved in your server infrastructure, and they’re not all behaving the exact same way. A proxy is a server that forwards traffic to your site and if that proxy doesn’t forward the visitors IP correctly, strange things can happen. (In this case, the strange thing is that Wordfence seems incapable of determining which method to best use to get visitor IPs).I would recommend you change the “How does Wordfence get IPs ” option to REMOTE_ADDR ( Use PHP’s built in REMOTE_ADDR and don’t use anything else. Very secure if this is compatible with your site.) and see if that fixes the issue for now.
If you keep having trouble after that, you need to start digging in to why different visits to your site come with different http headers. Your host should be able to help you figure that out. If you contact your host about it you can tell them
“The Wordfence plugin for WordPress needs to be able to detect client IPs in order to function properly. It fetches client IPs from http headers, either REMOTE_ADDR, X-Forwarded-For, X-Real-IP or CF-Connecting-IP depending on which one is provided with the request. It seems like this is behaving inconsistently on my site so that some requests have the client IP in one header and other requests have the client IP in another. Can you help me figure out why that’s the case?”
@spiceweb,
are you using the most recent version of Wordfence?Hi @meruth101,
MediaTemple are owned by GoDaddy so it’s theoretically possible that you are on a similar server.
I’m sorry we don’t have an answer to why it’s happening. We are gathering information and trying to replicate it so we hopefully at some point can find some answers. I will of course get back to you if/when I have an updates on this case.
Hi @eatonz,
I went digging a bit and did find one more report like this now! We already have a case filed for it (Internal reference number FB7604). Unfortunately Wordfence isn’t officially supported on Windows and since nothing is actually breaking, it may be a while before this makes it up our priority list. However, I appreciate you reporting it!Forum: Plugins
In reply to: [Wordfence Security - Firewall, Malware Scan, and Login Security] Server loadHi again,
I’m afraid I can’t tell you how to fix something before I know why/how it’s happening. Having significantly increased load after installing Wordfence is not normal, so something is going wrong on your server.Hi again @kenmontgroup,
The domain had ended up on our blacklist because it was seen injected on an infected website. The domain has now been removed from our list so you should no longer see it in your scan results!
Hi again!
Okay thanks for that info. It does sound like you’re experiencing the same issue we’ve seen with other customers recently.These sites typically do not have error logs available unfortunately so we’ve been struggling a bit getting to the bottom of this. If you don’t have a cPanel type account where you can get error logs, then I’d recommend enabling WordPress debug mode on your sites so that when something like this happens, you’ll have some kind of trace of what may have happened.
To get Wordfence back up it should work to just delete the “wordfence” folder located in wp-content/plugins and then reinstall Wordfence from the WordPress “plugins” page. If this keeps happening though it would be important to try to catch any errors in an error log, if possible.
P.S. The logins likely did happen, but they were logged with an incorrect IP since your site currently isn’t able to detect IPs correctly.