Seems my own server is hammering a domain?
I got a warning message about high bandwidth usage on a domain. I checked AWSTATS and found that the traffic was coming from the server's IP??
17,389 pages and hits
909kb of bandwidth
The bandwidth isn't so much, by why is the server making that many connections with the domain? Just doesn't seem right.
Seems that the traffic is directed at "wp-cron.php". I know the version of WP is up to date so that file should be too?
It is a Wordpress site if that matters. I have also had a lot of spam, mainly from .ru. I turned off the ability to create a user account and thought I had taken other blocking measures, but I still keep finding new spam to get rid of.
Help please!
ps: I checked further and it seems there are 160K hits from nbot, 3200 from mj12bot. and many more from many more bots....
-
Hey there! The first thing we need to determine is if your server uses Nginx or just Apache? If you're using Nginx, that could explain why the traffic shows up as coming from the local server.
With that many connections I'd be tempted to just block the bots' IP address at the firewall to ensure they can't connect to anything.
0 -
I don't even know what Nginx is so I doubt I have it. In fact, I just checked for it in the cPanel and it gave me the option to install it, which presumably means not installed.
The bot's IP address is the server address. I can't block the server's address, in fact, config doesn't even allow you to blockit.
I was reading nbot is for unidentifed bot traffic. That means I can't even use a robots.txt option to stop it if I can't identify what it is.
Thanks
0 -
Was doing more research, and it seems the biggest culprits are two bots, Bytedance and Bytespider, said to be from TikTok. It seems they ignore robots.txt, htaccess, etc. Some success with WAF. In the case of Wordpress sites, the free version of Wordfence allows blocking them. I am trying that now, but that only applies to WP sites. Is there a server-wide utility? I know Cloudfare was mentioned.
Thanks
0 -
I don't have any tools built-in to cPanel to help handle that. It might be best to reach out to your hosting provider to see if they could offer something other than Cloudflare for this situation.
0
Please sign in to leave a comment.
Comments
4 comments