How to optimize firewall settings in Wordfence

Avatar
Sheila
  • Answered
I'm on a dedicated server with ~35 WP sites on it. I've been battling all the security and performance settings. Recently I decided to completely remove W3TC and Login Security Solutions to go exclusively with Wordfence. I'm now looking for guidance on the optimal settings for the firewall section in particular. I apparently set it too low and legitimate visitors were blocked. Before I put it on more of my sites I'd like some guidance on all these variable settings. Thanks.
Replies 2
Avatar
0
Arn
Hello Sheila, Thanks for your patience. We went ahead and loaded the Wordpress plugin in order to take a look at it. I have to say that we were impressed with its depth and the many things you can do with it. That being said, I also had Jacob (the author for WordPress Brute force security articles) look at it with me. It is difficult to give you specific settings because it will vary based on what's happening to your sites. We looked through all of the settings and Wordfence does a great job on just their default settings (medium security level), so we would recommend using that setting as a start. Jacob recommended that for the "known 404's for vulnerable sites" be blocked instead of throttled after a certain amount times. You can adjust the settings based on your level of paranoia, and also depending on if you're being hit an attack. These recommendations are based on the fact that you're running these sites on a dedicated server as opposed to a shared server. Shared servers share resources, so anything that's resource intensive on shared server would be detrimental to the performance of the site and server. Many of these settings require that you are familiar and active with the management of your WordPress - something that many people sometimes take for granted. If you have further questions regarding this issue or any further comments, please let us know. Kindest regards, Arnel C.
Avatar
0
Arn
Hello Sheila,

Apologies for the delay on the answer. Wordfence is a third party plugin that will need to be researched before we can recommend any optimal settings. We will post more info on this issue soon.
Regards, Arnel