Whatsapp/ Telegram: 65 97765889 Live Chat Submit Ticket   Login

Add permitted IP access to your Web Server – required by Sucuri.

To avoid attacker to bypass your website firewall from Sucuri. You need to make sure the virtual host ( the protected domain name) accessed by the permitted server IP addresses.
To do this, you restrict the access of this protected domain. Today, we will give examples on the common web servers and web hosting control panel.
For Apache server has 2 versions;
 
Apache 2.4 Server
 
<FilesMatch “.*”>
Require ip 192.88.134.0/23
Require ip 185.93.228.0/22
Require ip 2a02:fe80::/29
Require ip 66.248.200.0/22
</FilesMatch>
 
Apache 2.2 Server
 
<FilesMatch “.*”>
Order deny,allow
Deny from all
Allow from 192.88.134.0/23
Allow from 185.93.228.0/22
Allow from 2a02:fe80::/29
Allow from 66.248.200.0/22
</FilesMatch>
 
Nginx Server
 
location / {
allow 192.88.134.0/23;
allow 185.93.228.0/22;
allow 2a02:fe80::/29;
allow 66.248.200.0/22;
deny all;
# Existing NGINX rules
}
It is easy with Plesk, just insert the apache code as shown.plesk apache include
plesk vhost include
This is for cPanel
cpanel
 For IIs web server, you need to add IP and Domain restriction in Roles and features. After which you add the permitted IP addresses to the protected domain. As such, attackers cannot bypass your website firewall.
About the Author
martin
Martin has been in the Web Hosting industry for more than 2 decades. He is specialized on Web Security, Cloud Hosting, Cloud computing and different types of virtualization.

Leave a Reply