Trying to stem bot traffic / spike in bandwidth on wordpress site

[ad_1]

A site I manage has been hit with a large spike in bandwidth usage last month and is on the same path again this month.

Cloudways report this is due to bot traffic.

I have wordfence installed with the firewall active (brute force rules have been tightened) as well as cloudways’ own bot protection plugin but nothing seems to be stemming it.

Is there anything else I can do, and is there a way I can monitor specifically what the bots are downloading to use up the bandwidth to quickly?

​

[ad_2]
1 Comment

  1. Check your web logs to see what’s being downloaded.

    Also:

    1. Wordfence > Tools – “filter traffic = “all hits”. Note things like hostnames, countries and click the “Run whois” button. Note down the “ASN”.
    2. Then go into Cloudflare > Security > WAF and rules to block traffic based on Countries, Hostname and ASN. Don’t bother with blocking specific IP addresses, it’s simple for attackers to change those.
    3. Also setup a WAF rule to “managed challenge” all traffic.
    4. In Security > Settings, change your security level to High or I’m Under Attack.

 

This site will teach you how to build a WordPress website for beginners. We will cover everything from installing WordPress to adding pages, posts, and images to your site. You will learn how to customize your site with themes and plugins, as well as how to market your site online.

Buy WordPress Transfer