Hello guys,
We run Magento 2.4.0 CE powered webstore which experienced an abnormal spike in usage recently. There were some 3000 post requests to the site's shopping cart from the French IP 94.23.39.217, although we donesn't sell anything to customers outside of States. Here's an example of log records:
94.23.39.217 94.23.39.217 - [16/Feb/2021:14:59:56 +0000] "POST /cartquickpro/product_compare/add/ HTTP/1.1" 302 - "https://xxxyyyzzz.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.103 Safari/537.36"
The question is, what would be the best practice to prevent this post request/traffic spike problem in future? I questioned the hosting provider tech support already, but the one just advised to block the suspicious IPs which I consider a mere palliative.
Thankful in advance for assistance!