Support

Admin Tools

#9911 Firewall blocking social network submission

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by nicholas on Friday, 24 June 2011 12:47 CDT

Friday, 24 June 2011 04:47 CDT

user41046
Mandatory information about my setup:

Have I searched the forum before posting? Yes
Have I read the Troubleshooting Wizard before posting? Yes
Have I read the documentation before posting? Yes
Joomla! version: 1.5.23
PHP version: 5.2.6
MySQL version: 5.1.52
Host: 123-Reg.co.uk
Admin Tools Professional version: 2.0.5


Description of my issue:

Having installed the component on http:/www.cafebahia.co.uk I now find that submitting pages to Digg fail due to the firewall blocking requests from that site using the Addthis toolbar or manually entering the url into the submission box on Digg itself.

I have added the IP for the Digg requests, 64.191.203.34, to the Admin IP Whitelist but it still blocks the submission requests and classes them as bad behaviour.

Friday, 24 June 2011 07:38 CDT

nicholas
Adding the IP to the Admin IP Whitelist does not prevent the Bad Behaviour message to be displayed. Please go to Components, Admin Tools, Web Application Firewall, WAF Configuration and find the "Bad Behaviour integration" box. In there, there is a field named "White list IPs (comma separated list)". Append a comma and Digg's IP address. Save the WAF configuration. It should now work.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Friday, 24 June 2011 09:10 CDT

user41046
Yes, after a reinstall I have just noticed that field. I think the problem may have been that I was trying to add an HTTPS address more than WAF blocking the request.

Thanks

Friday, 24 June 2011 09:15 CDT

nicholas
Hm, if your site does not have a dedicated IP address and a commercially signed SSL certificate then yes, that would be a problem as Digg wouldn't be able to access it.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Friday, 24 June 2011 09:24 CDT

user41046
The site definitely has a commercially signed SSL certificate, but it's shared hosting so chances are the load balancing they use, which has caused problems with SSL redirects in both plugin form and htaccess directives is causing problems for Digg too.

Oh well, such is life.

Friday, 24 June 2011 09:31 CDT

nicholas
I can certainly feel you. I've wasted many hours trying to solve problems that were caused by everything not in my power to change :(

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Friday, 24 June 2011 09:42 CDT

slaes
shared hosts are just a colossal head f^%k. half these companies have a dedicated server or 2 and go around cramming as many users as possible on them for $5 a month and start calling them self a web host. I have also spent many hrs trying to solve things beyond my control, not worth the grief.

Friday, 24 June 2011 09:59 CDT

nicholas
+1! You only get what you pay for. For $2-5/month you get rubbish. For $8/month you might get some decent hosting (at the expense of disk space and bandwidth). Add a few more bucks to go to the $25-30/month range and you can get very decent hosting. Double the pot, go to $50-100/month and you get yourself a very good quality VPS or cloud server. If you shoot even higher you get the créme de la créme - worth it if you have a precious property that brings money in. So, in the end of the day, is all about money over time. You can either save money and spend countless hours trying to fix stuff, or save your time by spending big bucks on top quality hosting.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Friday, 24 June 2011 10:37 CDT

user41046
Well currently the site I've been having the SSL problems with is on 123-Reg, not a bad host overall but they do leave something to be desired, especially with their customer service. I'm convincing my bosses to transfer over to 1and1 as I've had hosting with them since 2005 and not had any problems with sites being hacked or anything in all that time, and you don't have to set the DNS or MX records each time you add a new domain or email address.

I've also discovered that setting the 'Rmmove all instances of Joomla from output' causes the AJAX in JoomComments to stop working as well, that took me a while to sort out.

Friday, 24 June 2011 11:52 CDT

slaes
on the "remove all instances of joomla" i know nico didnt intend for it to be used on all sites, however its possible with a little tweaking and testing.

i wrote a post a little while ago on how to diagnose and make it work for pretty much any extensions, however i had a quick look and cant seem to find it. Its defiantly here somewhere if you really keen on making it happen.

Nico, i could be wrong but is mootools and or k2 causing some kinda conflict with your search on this site?

Friday, 24 June 2011 11:58 CDT

slaes
if you enable remove all instances of joomla make sure you go to /public_html/includes/js/joomla.javascript.js and make a copy of the joomla.javascript.js renaming it to .javascript.js

You'll find this will solve some problems for you :)

Friday, 24 June 2011 12:47 CDT

nicholas
Search is completely botched. Even when the widget works, the results are funky. Better use Google search :(

Regarding that feature, yes, it was never intended to be used on anything but simple blog-style sites. I can improve that feature, but it gets so darn slow that it is no longer useful to anyone.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!