Magento Forums
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Error While Installing Extensions Blocked by Firewall

SOLVED
Go to solution
‎02-12-2017 08:27 PM
‎02-12-2017 08:27 PM

Error While Installing Extensions Blocked by Firewall

Hai. Trying to install extension through Magento Connect 2.0

I'm using version 1.9.3.2

Now unable to access the page, admin and front end. Asked the hosting guy to unblock my IP but it blocked again when try to install extension.

Please, any help much appreciated.

 

Following is from the server log :

[Mon Feb 13 11:09:17.605262 2017] [:error] [pid 50944] [client 1.9.100.198] ModSecurity: Access denied with redirection to http://mydomain using status 302 (phase 2). Match of "beginsWith %{request_headers.host}" against "TX:1" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP/rules/REQUEST-31-APPLICATION-ATTACK-RFI.conf"] [line "30"] [id "950120"] [rev "3"] [msg "Possible Remote File Inclusion (RFI) Attack: Off-Domain Reference/Link"] [data "Matched Data: http://connect20.magentocommerce.com/community/mppsfound within TX:1: connect20.magentocommerce.com/community/mpps"] [severity "CRITICAL"] [ver "OWASP_CRS/3.0.0"] [maturity "9"] [accuracy "9"] [tag "Host: mydomain"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-remote file inclusion"] [tag "OWASP_CRS/WEB_ATTACK/RFI"] [hostname "mydomain"] [uri "/downloader/index.php"] [unique_id "WKEjXX60dXVnZTJbVKYPdwAAAAM"]

0 Kudos
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
‎03-25-2017 10:05 AM
‎03-25-2017 10:05 AM

Re: Error While Installing Extensions Blocked by Firewall

You should reach to your technical support of the hosting because it's block because of their rules and server configuration. I see that they are using OWASP rules for detection of "zero-day" issues, which sometimes can be too restrictive.

 

Workaround for you, if they do not want to help you (in which case you should leave them), is to download extension via http://freegento.com/ddl-magento-extension.php and to install it manually by copying files via FTP and clearing the cache afterwards.

If this response was helpful to you, consider giving kudos to this post.
If this response solved your problem, click accept as solution to help others solve this issue

View solution in original post

Reply
2 REPLIES 2
‎03-25-2017 10:05 AM
‎03-25-2017 10:05 AM

Re: Error While Installing Extensions Blocked by Firewall

You should reach to your technical support of the hosting because it's block because of their rules and server configuration. I see that they are using OWASP rules for detection of "zero-day" issues, which sometimes can be too restrictive.

 

Workaround for you, if they do not want to help you (in which case you should leave them), is to download extension via http://freegento.com/ddl-magento-extension.php and to install it manually by copying files via FTP and clearing the cache afterwards.

If this response was helpful to you, consider giving kudos to this post.
If this response solved your problem, click accept as solution to help others solve this issue
Reply
‎03-25-2017 10:25 AM
‎03-25-2017 10:25 AM

Re: Error While Installing Extensions Blocked by Firewall

Thanks Sinisa for the advice. But my hosting refused to create white list or customize the OWASP rules. So I decided to switch to OC instead. Save the headacheSmiley Happy

0 Kudos
Reply