Hey, I need to remove the cloudflare IP change when you log into wp-admin as it comes up as 403 forbidden, lol.
I have found this page My htaccess IP whitelist doesn't work with Cloudflare
and this https://www.cloudflare.com/technical-resources/#mod_Cloudflare modcloudflare, but I have no idea how to install it on the host? I use one for website hosting, does anyone know if ones hosting has something that can install this?
What did you do to block people from the login page? Something is configured to give a 403.
If you can’t set up mod_cloudflare (or a similar process) on your server, you can use Cloudflare Access to limit logins. I configured it to bypass the Access restriction for my home IP and a client IP address. And if neither of us are using our local IP address, we can get an access code through our personal email address. (note that I’m not currently using it in this case, and that’s why it says wp-login.sav instead of .php). Access free if it’s for five users (email addresses) or fewer. Restrict/Bypass by IP address is completely free.
Most likely wordfence I think. I did have it in the .htaccess to only allow my IPs but have removed that and still get the error, so most likely wordfence.
Wordfence knows how to get your IP address from Cloudflare. “All Options”, near the top:
Wordfence also has a Whitelist a little farther down under Advanced Firewall Options
Awesome, thanks! I think this might fix it!
This topic was automatically closed after 30 days. New replies are no longer allowed.