Magento Forums
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Online customers show several IP Addresses from same place

SOLVED
Go to solution
‎01-31-2017 11:55 AM
‎01-31-2017 11:55 AM

Online customers show several IP Addresses from same place

I'm not sure if this question belongs here or somewhere else, but there isn't a topic for security related problems, just for security patches. Anyway, when I look at the Online Customers it shows me about 1400 guests all from the IP Address 180.76.15.* which is from Beijing, China. Normally I wouldn't question this, but seeing as it is so many from the same IP Address range, it has me worried. Especially when you add in the fact that most of the Session Start times and last activity are only a couple seconds apart. Same with the Session Start times in the list of the IP Addresses. Any ideas?

0 Kudos
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
‎02-02-2017 11:16 AM
‎02-02-2017 11:16 AM

Re: Online customers show several IP Addresses from same place

correct way:

 

 

Order Deny,Allow
Deny from 180.76.0.0/16
Anton Pachkine @ magento2.hosting : Magento Small Business Package.

View solution in original post

0 Kudos
Reply
5 REPLIES 5
‎01-31-2017 12:00 PM
‎01-31-2017 12:00 PM

Re: Online customers show several IP Addresses from same place

hi,

those are probably the bots scanning your store. we usually just block the whole c-class of those IPs on the server, especially if you do not sell to that country. nothing good will come from them anyway.

Anton Pachkine @ magento2.hosting : Magento Small Business Package.
0 Kudos
Reply
‎02-02-2017 11:08 AM
‎02-02-2017 11:08 AM

Re: Online customers show several IP Addresses from same place

@Finestshops

 

So I blocked the range of IP addresses and somehow when I did that, I gave myself a 500 internal server error (I think that is what it was. I undid it right away so I don't remember) so unless I did something wrong...?

 

What I did was add 

Deny from 180.76.15.0/163

to the .htaccess file.

0 Kudos
Reply
‎02-02-2017 11:16 AM
‎02-02-2017 11:16 AM

Re: Online customers show several IP Addresses from same place

correct way:

 

 

Order Deny,Allow
Deny from 180.76.0.0/16
Anton Pachkine @ magento2.hosting : Magento Small Business Package.
0 Kudos
Reply
‎02-03-2017 07:37 AM
‎02-03-2017 07:37 AM

Re: Online customers show several IP Addresses from same place

@Finestshops

 

I've done this and the IP Addresses are still showing up in online customers as before.

0 Kudos
Reply
‎02-03-2017 07:43 AM
‎02-03-2017 07:43 AM

Re: Online customers show several IP Addresses from same place

try to restart apache to clear connections.

you can test it by adding your ip the same way - you should not be able to open your store in the browser but it will not prevent you from opening ftp or ssh to remove your IP from .htaccess

you can also ask your host to block those IPs on the firewall.

 

Anton Pachkine @ magento2.hosting : Magento Small Business Package.
0 Kudos
Reply