Hey everyone, I was wondering if someone can let me know if I am doing the correct thing…
I received an email from my host saying:
Checking it we have found that load was caused by high activity in the horrornewsnetwork.net website (cronjobs + wordfence) , it looks like your website is under DDoS/bruteforce attack. As we can see, it is pointed to the server vis Cloudflare and we recommend to enable there the “under attack mode” feature.
In order to stop overloading of the server we had to disable web access to site - immediately load on the server has returned back to normal level. We have initiated malware scan on the server, but due to huge number of files under domain it will take some time.
I then asked if it was still happening and they responded:
Please enable DDoS protection in Cloudflare first, then we will try to enable web access to website and see if it still causes overload for whole server.
I then logged into my Cloudflare dashboard and set this, but I am not sure if that is right, or if I have to go into the rules and do something different?
Can someone please let me know?