Hello,
Recently, I was very proud of myself to make a good optimisation to my cPanel servers, and lowered the server load !
I identified in cPHulk that some IPs from countries attacks more than others.
And some countries are absolutely not in my customers target.
Then, I played to block these countries, through cPHulk, CSF and Imunify360 :
Argentina
Azerbaijan
Bangladesh
Brazil #this one, I was not confident, but I did
China
Colombia
Iran
Iraq
Pakistan
Russia
Serbia
Sudan
Ukraine
Also, Morocco, Vietnam, Thailand, South Korea and Philippines are countries which from I have a lot of attacks.
But I have customers living over there, so I cannot block these frequented countries.
So, here, my list of 13 (winners) blacklisted countries :
AR,AZ,BD,BR,CN,CO,IQ,IR,PK,RS,RU,SD,UA
The beautiful dream was not long !
I get errors from Google Ads : cannot start a new campaign :
> Not eligible : Disapproved (Destination not working)
(see attachment below)
Do you know that Google require your website to be accessible all around the world, even if you don't target these countries :
> Destinations that don't function properly or have been incorrectly set up
> Examples: A site that returns an HTTP error code, such as 403 Forbidden or 404 Not Found;
> a site that doesn't work in all locations or on common browsers and devices; DNS lookup errors;
> internal server errors; site under construction
Source :
https://support.google.com/adspolicy/answer/6368661?hl=en
I ask to the Google Support a confirmation, and they told me :
> Your site cannot work properly for all locations :
> Thank you for sharing the "uptrends" screenshot with us. However, when I used another internal tools to check on the URL "Example Domain". It is showing unavailable to countries like Brazil… Appreciate if you can help to check on this again.
As the WordPress plugin Wordfence have a Blocking Country feature, they talk well about this :
> Please note that if you are using Google Ads (formerly Google AdWords) on your site, you may get penalties for blocking access to your site. If you are using Google Ads, we recommend you only use Country Blocking to block access to the login form. Note that there is no way to get around the Google Ads policy. Google Ads does not allow any participant to block any country from viewing pages at all, even if you have told Google Ads to not show adverts in that country. If you are a participant, you can only block access to the login form. If you get a warning from Google Ads, uncheck “Block access to the rest of the site (outside the login form)” to fix this.
Source :
https://www.wordfence.com/help/blocking/country-blocking/
The reality is clear :
I cannot block the whole access to my servers for certain countries, because I have some customers who want to run Google Ads to their websites, and Google require your website to be accessible from every country in the world, expected maybe some countries (China ? Russia ? Embargoed regions (src) : Crimea, Cuba, Iran, North Korea, Sevastopol, Sudan, Syria ? dunno)
So my question is :
Do you know a way to restrict some things (a kind of hardening) for my 13 countries. Maybe restrict access to wp-login.php pages, cPanel connection page, some protocols SMTP, FTP, etc, totally for certain countries but allow the countries to read the frontend of the HTTP(s) websites ?
I mean, restrict access to certain countries, only to sensitive areas but not restrict them to visit the frontend of websites ?
Exactly like is suggested by Wordfence here :
> you can only block access to the login form
Then, it's OK for Google Ads, and it's OK for the server load and security concern.
For your info, I am a CloudLinux user.
Thanks in advance for your experience.
Recently, I was very proud of myself to make a good optimisation to my cPanel servers, and lowered the server load !
I identified in cPHulk that some IPs from countries attacks more than others.
And some countries are absolutely not in my customers target.
Then, I played to block these countries, through cPHulk, CSF and Imunify360 :
Argentina
Azerbaijan
Bangladesh
Brazil #this one, I was not confident, but I did
China
Colombia
Iran
Iraq
Pakistan
Russia
Serbia
Sudan
Ukraine
Also, Morocco, Vietnam, Thailand, South Korea and Philippines are countries which from I have a lot of attacks.
But I have customers living over there, so I cannot block these frequented countries.
So, here, my list of 13 (winners) blacklisted countries :
AR,AZ,BD,BR,CN,CO,IQ,IR,PK,RS,RU,SD,UA
The beautiful dream was not long !
I get errors from Google Ads : cannot start a new campaign :
> Not eligible : Disapproved (Destination not working)
(see attachment below)
Do you know that Google require your website to be accessible all around the world, even if you don't target these countries :
> Destinations that don't function properly or have been incorrectly set up
> Examples: A site that returns an HTTP error code, such as 403 Forbidden or 404 Not Found;
> a site that doesn't work in all locations or on common browsers and devices; DNS lookup errors;
> internal server errors; site under construction
Source :
https://support.google.com/adspolicy/answer/6368661?hl=en
I ask to the Google Support a confirmation, and they told me :
> Your site cannot work properly for all locations :
> Thank you for sharing the "uptrends" screenshot with us. However, when I used another internal tools to check on the URL "Example Domain". It is showing unavailable to countries like Brazil… Appreciate if you can help to check on this again.
As the WordPress plugin Wordfence have a Blocking Country feature, they talk well about this :
> Please note that if you are using Google Ads (formerly Google AdWords) on your site, you may get penalties for blocking access to your site. If you are using Google Ads, we recommend you only use Country Blocking to block access to the login form. Note that there is no way to get around the Google Ads policy. Google Ads does not allow any participant to block any country from viewing pages at all, even if you have told Google Ads to not show adverts in that country. If you are a participant, you can only block access to the login form. If you get a warning from Google Ads, uncheck “Block access to the rest of the site (outside the login form)” to fix this.
Source :
https://www.wordfence.com/help/blocking/country-blocking/
The reality is clear :
I cannot block the whole access to my servers for certain countries, because I have some customers who want to run Google Ads to their websites, and Google require your website to be accessible from every country in the world, expected maybe some countries (China ? Russia ? Embargoed regions (src) : Crimea, Cuba, Iran, North Korea, Sevastopol, Sudan, Syria ? dunno)
So my question is :
Do you know a way to restrict some things (a kind of hardening) for my 13 countries. Maybe restrict access to wp-login.php pages, cPanel connection page, some protocols SMTP, FTP, etc, totally for certain countries but allow the countries to read the frontend of the HTTP(s) websites ?
I mean, restrict access to certain countries, only to sensitive areas but not restrict them to visit the frontend of websites ?
Exactly like is suggested by Wordfence here :
> you can only block access to the login form
Then, it's OK for Google Ads, and it's OK for the server load and security concern.
For your info, I am a CloudLinux user.
Thanks in advance for your experience.
Attachments
Last edited by a moderator:
