Sucuri Firewall and Cron Job issue

Hi,

We have just added Sucur Firewall to our site.

The cron job which we reply on stopped working.

We have always used cron-job.org for our needs. It has been very reliable.

How we run into this problem.

  1. The cron-job.org still shows the cron job as successfully executed. This is the header of the report:

Date: Fri, 22 Nov 2019 05:02:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=xxxxxxxxxxxxxxxxxx; expires=Sun, 22-Dec-19 05:02:32 GMT; path=/; domain=.ourdomain.net; HttpOnly
X-Sucuri-ID: 15006
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Security-Policy: upgrade-insecure-requests;
Refresh: 60;url=/demo/mailster/xxxxxxxxxxxxxxxxxxxxxxxxxxx
Set-Cookie: apbct_timestamp=1574388391; path=/; domain=ourdomain.net; HttpOnly
Set-Cookie: apbct_site_landing_ts=1574388391; path=/; domain=ourdomain.net; HttpOnly
Set-Cookie: apbct_page_hits=1; path=/; domain=ourdomain.net; HttpOnly
Set-Cookie: apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%252277ca295aaeea3362efb0830efc6adb39%2522%257D; path=/; domain=ourdomain.net; HttpOnly
Set-Cookie: ct_sfw_pass_key=c2f99ffee574d7aff28dc1f701f22f1f; expires=Sun, 22-Dec-2019 02:06:31 GMT; Max-Age=2592000; path=/; domain=ouromain.net
Set-Cookie: bvfw-ip-cookie=eee87beaa4cd37c4ccec76d577ea0b3ce0c637d5; expires=Fri, 22-Nov-2019 03:06:31 GMT; Max-Age=3600; path=COOKIEPATH; domain=COOKIE_DOMAIN; secure; HttpOnly
Vary: Accept-Encoding
Cache-Control: max-age=600
Expires: Fri, 22 Nov 2019 02:16:31 GMT
X-Endurance-Cache-Level: 2
X-Sucuri-Cache: HIT
CF-Cache-Status: DYNAMIC
Expect-CT: max-age=604800, report-uri=”https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct”
Server: Cloudflare
CF-RAY: 53985a0d9ac0e013-FRA

  1. The webhook is executed well if triggered manually.
  1. But when the cron job is left to the cron-job.org or the server console, it is not hitting the webhook URL.
    https://drive.google.com/file/d/1pbZJrtxmQiIIdM–bTGwk8LkZCWUQrVc/view?usp=sharing

We really need this to work. Please help! Thank you!

Jing

We moved our application behind Sucuri firewall. Our cron job is now having issues. We depend on our cron job which is always very reliable. They are running on cron-job.org.

Now it stopped working. Cron-job.org shows they are running successfully. But now the cron jobs have to be manually triggered.

Hi,

We have just moved our DNS from Cloudflare to Sucuri.

The cron job which we reply on stopped working.

We have always used cron-job.org for our needs. It has been very reliable.

  1. The cron-job.org still shows the cron job as successfully executed. This is the header of the report:

Date: Fri, 22 Nov 2019 05:02:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=xxxxxxxxxxxxxxxxxx; expires=Sun, 22-Dec-19 05:02:32 GMT; path=/; domain=.ourdomain.net; HttpOnly
X-Sucuri-ID: 15006
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Security-Policy: upgrade-insecure-requests;
Refresh: 60;url=/demo/mailster/xxxxxxxxxxxxxxxxxxxxxxxxxxx
Set-Cookie: apbct_timestamp=1574388391; path=/; domain=ourdomain.net; HttpOnly
Set-Cookie: apbct_site_landing_ts=1574388391; path=/; domain=ourdomain.net; HttpOnly
Set-Cookie: apbct_page_hits=1; path=/; domain=ourdomain.net; HttpOnly
Set-Cookie: apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%252277ca295aaeea3362efb0830efc6adb39%2522%257D; path=/; domain=ourdomain.net; HttpOnly
Set-Cookie: ct_sfw_pass_key=c2f99ffee574d7aff28dc1f701f22f1f; expires=Sun, 22-Dec-2019 02:06:31 GMT; Max-Age=2592000; path=/; domain=ouromain.net
Set-Cookie: bvfw-ip-cookie=eee87beaa4cd37c4ccec76d577ea0b3ce0c637d5; expires=Fri, 22-Nov-2019 03:06:31 GMT; Max-Age=3600; path=COOKIEPATH; domain=COOKIE_DOMAIN; secure; HttpOnly
Vary: Accept-Encoding
Cache-Control: max-age=600
Expires: Fri, 22 Nov 2019 02:16:31 GMT
X-Endurance-Cache-Level: 2
X-Sucuri-Cache: HIT
CF-Cache-Status: DYNAMIC
Expect-CT: max-age=604800, report-uri=”https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct”
Server: Cloudflare
CF-RAY: 53985a0d9ac0e013-FRA

  1. The webhook is executed well if triggered manually.
  1. But when the cron job is left to the cron-job.org or the server console, it is not hitting the webhook URL.
    https://drive.google.com/file/d/1pbZJrtxmQiIIdM–bTGwk8LkZCWUQrVc/view?usp=sharing

Please help.

Jing

Hi @gujingc, this question seems better directed elsewhere…like on a Sucuri forum? If you’ve moved the domain away from cloudflare, it’s difficult to say why it’s failing with Sucuri. Perhaps whitelist the Cron-job.org ip addresses in Sucuri?

Edit - @gujingc, duplicate posts don’t really help, but a post on a sucuri forum might…

1 Like