Newbie here, how to Whitelist dynamic IP?

I use this fire-rules to help protect my website from hacking. I found it somewhere on the web, is it written properly? and is it possible to whitelist my IP keeping in my mind that’s it is dynamic?

((http.request.uri.path contains “/xmlrpc.php”) or (http.request.uri.path contains “/wp-login.php”) or (http.request.uri.path contains “/wp-admin/” and not http.request.uri.path contains “/wp-admin/admin-ajax.php” and not http.request.uri.path contains " /wp-admin/theme-editor.php")) and ip.geoip.country ne “MY”

Thanks!

I’m not sure whether this is possible. But if you just want to protect WordPress admin page from brute-force attacks, consider using Cloudflare Access.

This topic was automatically closed after 30 days. New replies are no longer allowed.