Site Hit Hard by China Coincidental with Blocking China

andytheo · January 20, 2020, 10:18pm

I went through a week of attacks to wp-login and xmlrpc which were mostly mitigated by adding Cloudflare Pro.

Got up at 3:00 AM to see progress and saw some activity from China – not a lot. No sooner did I block them that all of a sudden they were on my site by the thousands (see attached).

I’m new at this. What does the group here make of this, especially since it started a minute after I blocked China? They’re mostly GETs as opposed to POSTS. Does this resemble web scraping or is it something else I should be wary about?

Thank you.

mdemoura · January 22, 2020, 10:47am

Hi @andytheo, can you add a screenshot of the other aggregated statistics from that same page you attached? That would help understanding what’s likely going on.

andytheo · January 22, 2020, 5:45pm

Sure. I’ve attached last 24 hours. The POSTs are down to almost nothing (18). Those rules work nicely. The GETs are outta control (21K+).

Thank you for looking deeper into this.

system · February 19, 2020, 10:54pm

This topic was automatically closed after 30 days. New replies are no longer allowed.

Topic		Replies	Views
Too many random requestes from China Analytics	3	2477	October 10, 2021
Massive attack from China seems to overwhelm CloudFlare Security	5	2079	September 19, 2019
Help with DDos Attack Security dash-troubleshooting	24	3229	October 27, 2019
Looks like firewall rule is not working Security	7	1643	May 24, 2022
China can not access to my site General	3	1351	February 22, 2023

Site Hit Hard by China Coincidental with Blocking China

Related topics