Firewall rule to block access to /wp-admin/admin-ajax.php

Is it safe/good practice to block or challenge access to /wp-admin/admin-ajax.php from external sources?

i know some plugins use this php file so its not a good idea to block access to it all together.

So how to i create a rule to make sure only external requests to this file are blocked

Do I use the referer rule with AND

So if my site is https://rizbit.uk

Do I say block all requests to /wp-admin/admin-ajax.php unless the referrer contains ‘rizbit.uk

This topic was automatically closed after 30 days. New replies are no longer allowed.