Posting in the Magento forums has been disabled pending the implementation of a new and improved forum solution which should better serve the community.

For new questions please post at magento.stackexchange.com, the community-run support site for the Magento community. We will be providing updates on the new forum solution soon. For questions or concerns please email community@magento.com.

Magento Forum

blocking one ip shuts down the site
 
kerryman
Jr. Member
 
Total Posts:  1
Joined:  2011-01-27
 

hi there,

i have been getting tons of session files in my var directory, none related to real visitors, 99% bots
and traffic increading daily from thee bots
checking the content in the session files I see a huge amount of traffic is coming from this ip
5.199.175.163

I have added a deny line to my .htaccess file for the above ip but when i do so no one can access the site at all

<Files *>
Order Allow,Deny
Allow from all
Deny from 5.199.175.163
</Files>

The entire site is not available from any ip when using the above code, change it to any other ip and its working fine

Do I have a virus of some sort?

Also a lot of session files are in chinese or another script
I added this to the .htaccess but no luck

RewriteEngine on
# Options +FollowSymlinks
RewriteCond %{HTTP_REFERER} \\\\.balticservers\\\\.com [NC,OR]
RewriteCond %{HTTP_REFERER} \\\\.webmeup\\\\.com [NC,OR]
RewriteCond %{REMOTE_HOST} \\\\.balticservers\\\\.com$ [NC,OR]
RewriteCond %{REMOTE_HOST} \\\\.webmeup\\\\.com$ [NC,OR]
RewriteCond %{REMOTE_HOST} \\\\.softlayer\\\\.com$ [NC,OR]
RewriteCond %{REMOTE_HOST} \\\\.leaseweb\\\\.com$
RewriteRule .* - [F]

any help appreciated

 
Magento Community Magento Community
Magento Community
Magento Community
Magento Community
Magento Community
Back to top