My current firewall setup is set to a medium security level with the US being whitelisted.
However, when I check my Wordpress logs, I notice several among the many international IP addresses trying to repeatedly gain access to my web server. Here is a sample list:
184.108.40.206 from the Ukraine under the ISP name LLC TC Interzvyazok and a usage type of Data
center/Web hosting/transit (go here for more details: https://www.abuseipdb.com/check/220.127.116.11).
18.104.22.168 from Digital Ocean Data Center Web Hosting in the Netherlands (go here for more info:
22.214.171.124 from Host Europe GmbH Data Center/Web Hosting/Transit in Germany (go here for more
Based on the report, I know these are bots or malicious spammers.
Given my current firewall setup, why I am still getting international requests given the US is the only country whitelisted?
And why are these requests coming from data centers or prominent companies like Digital Ocean?
Any help or support will be graciously appreciated!
Thank you, by the way, for designing a stupendous, user-friendly CDN!
All my best,