In one of my previous tutorial I wrote about using Incapsula to protect your admin directory using the Incapsula's Login Protection 2 factor authentication service.
The best thing about incapsula is that you don't have to add any code to your wordpress site or do any server side configuration which makes its installation very easy and bypassing it very hard.
If you configure incapsula to use the login protection on yoursite.com/wp-admin url, then everytime anyone will try to access yoursite.com/wp-admin then they will have to enter a second code which will be sent to your registered email.
Incapsula is not just for login protection it is actually a CDN Content Delivery Network like Cloudflare which makes your site faster and also saves your bandwidth decreasing load from your servers but Incapsula is far better than cloudflare in terms of protecting your site. It can stop all the malicious bots - spammers bots, many type of proxies before they even hit your server. It also provides hot link protection to save your server bandwidth.
They also provide protection from DDoS Attacks, SQL injection, Cross Site Scripting XSS Attacks and also from backdoors using heuristic analysis if you upgrade your plan. You can see the full plan comparison on their website.
You can configure incapsula to use 2 factor authentication to prevent unwanted access to sensitive/important areas of your site.
The best thing about incapsula is that you don't have to add any code to your wordpress site or do any server side configuration which makes its installation very easy and bypassing it very hard.
If you configure incapsula to use the login protection on yoursite.com/wp-admin url, then everytime anyone will try to access yoursite.com/wp-admin then they will have to enter a second code which will be sent to your registered email.
Incapsula is not just for login protection it is actually a CDN Content Delivery Network like Cloudflare which makes your site faster and also saves your bandwidth decreasing load from your servers but Incapsula is far better than cloudflare in terms of protecting your site. It can stop all the malicious bots - spammers bots, many type of proxies before they even hit your server. It also provides hot link protection to save your server bandwidth.
They also provide protection from DDoS Attacks, SQL injection, Cross Site Scripting XSS Attacks and also from backdoors using heuristic analysis if you upgrade your plan. You can see the full plan comparison on their website.
How to Setup Incapsula on your Wordpress Site :-
To route your traffic through Incapsula Servers you will have to point your domain DNS to Incapsula Servers.
First go to Incapsula.com and register your account.
Then add your domain in your incapsula account. Incapsula will give you 2 IP and 1 Nameserver to add in your domain DNS configuration.
You can edit your domain DNS either through your domain provider panel or through your Cpanel.
I am assuming here you are using your hosting provider nameservers and your domain is pointing to your cpanel server
Now go to your Cpanel and Click on the Advance DNS Zone Editor
Now replace your server ip with the ip provided by Incapsula.
Now it will take some time to update your DNS, it usually happens in 5 to 10 minutes, to make the process faster.
Open you pc command prompt type ipconfig/flushdns 2-3 times and restart your router.
Now again open your cmd and ping your site.com and see if it is now pointing to Incapsula IP or not.
Now your traffic is routing through incapsula's servers you will have to install this incapsula wordpress plugin to get your visitors' real ip else wordpress will show you Incapsula IP instead of your visitors IP.
Now go to your Incapsula Dashboard and Click on settings. Then go to the Login Protect Tab and click on protect common application and select wordpress.
If you changed your wordpress admin directory default url you will have to use the Add Page option and configure it according to your needs.
No comments:
Post a Comment