What is the name of the domain?
What is the issue you’re encountering
The problem is that my websites have been experiencing an increasing number of attacks from the USA. My clients are based in Australia and New Zealand, while my team resides in the Philippines and Pakistan. The issue arose when my websites started getting hacked. When I checked the logs, I noticed that the attacks were coming from the USA, so I tried to block that region since it is not part of my potential audience. I set up a redirect rule so that if a visitor’s country was not Australia, Pakistan, the Philippines, or New Zealand, they would be redirected to Google.com. However, this turned out to be a disaster. All my websites’ SEO, ads, and monitoring tools stopped working. Even when I searched for my website on Google, my favicon was replaced with Google’s favicon. I then started reading the documentation and found a custom rule setting in the WAF that allows us to configure bots to crawl the website. I made the necessary changes. I created a custom rule named “Bots,” in which I excluded verified bots related to Search Engine Crawlers, Search Engine Optimization, Monitoring & Analytics, Advertising & Marketing, and other known bots. I enabled logging for matched requests and skipped all the WAF components. I set its priority to 1st and saved the settings. Next, I created another rule that blocked all countries except for the ones I mentioned earlier. This allowed my websites to work with analytics and monitoring tools again. However, after a day or two, I started receiving complaints from clients that their Google Ads were not working and that my website’s favicon in Google search results was showing as Google’s favicon. My website is built on WordPress, and I have Wordfence installed with basic settings, such as brute force protection. I would really appreciate your assistance. Could this issue be related to WAF rules? I just remembered that I haven’t cleared the cache after making these changes. Could caching affect firewall rules?
What is the current SSL/TLS setting?
Full
