Blocking China but with REGEX on http/https request
Posted: 14 Sep 2020, 18:59
I think I already know the answer to this but I'm running a half dozen Wordpress sites and I'm tired of seeing the gobs of traffic being blocked at the Wordpress security plugin level originating from China. I would consider putting a country block on China in CSF but frankly there is a small chance there could be some legitimate visitors from China (like 1 in 1000) to some of the websites. So a country block might not be the best idea.
I'm guessing there's no way I can put a country block in CSF for http/https request with a REGEX match for certain queries since CSF is really a network level firewall and not an application level firewall? Can I do it through LFD? I just prefer to decrease the load on my Wordpress sites from hacker traffic. There's good Wordpress security plugins but they are still blocking it at the application level so the blocking still is generating a load on the Wordpress site to block it via the plugin in the first place.
I do use the FIREHOL1 blocklist which blocks about 600 million IP addresses currently so I'm sure the China Hacker traffic would be much worse if I didn't have that. Amazing even with that block list how much China traffic there still is.
I'm guessing there's no way I can put a country block in CSF for http/https request with a REGEX match for certain queries since CSF is really a network level firewall and not an application level firewall? Can I do it through LFD? I just prefer to decrease the load on my Wordpress sites from hacker traffic. There's good Wordpress security plugins but they are still blocking it at the application level so the blocking still is generating a load on the Wordpress site to block it via the plugin in the first place.
I do use the FIREHOL1 blocklist which blocks about 600 million IP addresses currently so I'm sure the China Hacker traffic would be much worse if I didn't have that. Amazing even with that block list how much China traffic there still is.