Description: This plugin enhances the security of your WordPress website by seamlessly integrating Wordfence and Cloudflare. It automatically synchronizes blocked IPs from Wordfence and adds them to the Cloudflare firewall blocked list, providing an additional layer of protection against malicious traffic.

Automatic IP Synchronization: The plugin periodically checks for new blocked IPs in Wordfence and automatically adds them to Cloudflare's blocked IP list. This ensures that known malicious IPs are effectively blocked at the Cloudflare level, reducing the burden on your server.

Customizable Settings: The plugin allows you to configure various settings, including Cloudflare credentials (email and zone ID), blocked hits threshold, block scope (domain specific or entire account), and cron interval. These settings can be adjusted according to your specific security requirements.

Manual Process Trigger: You can manually trigger the synchronization process with a single click, giving you control over when the synchronization occurs. This can be helpful in urgent situations or when you want to ensure immediate synchronization of blocked IPs.

The Wordfence to Cloudflare plugin now includes an optional integration with AbuseIPDB's API. This enhances the overall functionality and gives users the ability to obtain additional information about the blocked IPs. With this new feature, users can gather comprehensive details about the origin and credibility of the malicious traffic, contributing to a more in-depth understanding of security threats.

AbuseIPDB Integration: The plugin can now optionally connect to AbuseIPDB's API. Once enabled, this feature allows you to fetch and display additional details about the IPs blocked by Wordfence. This additional information includes country code, usage type, ISP, and a confidence score, further enhancing the transparency and control over your website's security.

Country Code: Identify the geographic origin of the blocked IP addresses. This feature can help understand if your site is being targeted from specific regions.

Usage Type: Get to know the type of entity using the blocked IP. This knowledge can provide insights into the nature of the potential threats.

ISP Information: Obtain details about the internet service provider of the blocked IP.

Confidence Score: AbuseIPDB provides a confidence score that indicates how likely the IP is to engage in abusive behavior. This feature can be useful for prioritizing responses to threats.

Integration with WhatIsMyBrowser.com API This plugin now features seamless integration with the WhatIsMyBrowser.com API, providing you with enhanced user agent analysis and detection capabilities. The WhatIsMyBrowser.com API allows you to obtain detailed information about user agents, including software, operating systems, and more. This integration empowers you to better understand and manage the traffic hitting your WordPress site.

Benefits: Advanced User Agent Analysis: With the WhatIsMyBrowser.com API, you can gain deeper insights into the user agents accessing your website. This includes information about the software, operating systems, and more.

Abusive User Detection: The plugin can now detect potentially abusive or malicious user agents based on the API's analysis. It flags user agents that may pose a security risk, helping you proactively secure your website.

Automated Blocking: You can automatically block or manage potentially abusive user agents, safeguarding your website from potential threats. The user can send the ips that wishes to block to Cloudflare by clicking the button on each record.

How to Use: Obtain an API Key: To utilize this feature, you need an API key from WhatIsMyBrowser.com. You can obtain an API key by signing up for a free or premium account on their platform.

API Key Integration: Once you have your API key, enter it into the plugin settings. This will enable the plugin to communicate with the WhatIsMyBrowser.com API.

Enhanced User Agent Analysis: Upon activation, the plugin will start analyzing user agents hitting your site. The information gathered through the API integration will be displayed in the captured traffic data section of the plugin.

Abusive User Detection: The plugin will automatically mark user agents that are identified as potentially abusive by the API. This enables you to take appropriate actions to protect your site.

Please note that an API key is required for this feature to function effectively. Whether you choose a free or premium account on WhatIsMyBrowser.com, this integration will help you elevate your website's security and user agent analysis capabilities.

To get started, simply sign up for an account on WhatIsMyBrowser.com, obtain your API key, and integrate it into the plugin settings.

Enhanced IP Blocking: By combining the powerful IP blocking capabilities of Wordfence and Cloudflare, this plugin strengthens your website's defense against malicious traffic. It ensures that blocked IPs identified by Wordfence are effectively blocked at the Cloudflare level, preventing them from reaching your server.

Secure Cloudflare Key Storage: The plugin securely stores your Cloudflare key using WordPress's built-in options table. The key is encrypted and can only be accessed by authorized processes, providing an additional layer of protection for your key.

Reduced Server Load: Offloading the blocking of malicious IPs to Cloudflare reduces the load on your server, improving its performance and responsiveness. This is particularly beneficial during DDoS attacks or when dealing with a large number of blocked IPs.

Customizable Security Settings: The plugin offers flexible settings that allow you to tailor the security measures to your specific needs. You can adjust the blocked hits threshold and choose between domain-specific or account-wide blocking, providing granular control over the IP blocking process.

Seamless Integration: The plugin seamlessly integrates with your existing Wordfence and Cloudflare configurations. It leverages the APIs provided by both services, ensuring smooth and reliable synchronization of blocked IPs without any manual intervention.

By utilizing the combined power of Wordfence and Cloudflare, this plugin helps safeguard your WordPress website from malicious IPs more effectively. It automates the synchronization process, reduces server load, and provides customizable security settings, all while ensuring the secure storage of your Cloudflare key. With Wordfence to Cloudflare, you can enhance the security posture of your website and protect it from a wide range of security threats.

This plugin communicates with the following third-party services:

• Cloudflare API: To synchronize blocked IP addresses with Cloudflare's firewall, the plugin makes calls to Cloudflare's API. By using this plugin, you authorize it to transfer the necessary IP data between your website and Cloudflare.

  • Cloudflare's Terms of Service: https://www.cloudflare.com/terms/
  • Cloudflare's Privacy Policy: https://www.cloudflare.com/privacypolicy/

• AbuseIPDB API: For obtaining detailed information about the blocked IPs, the plugin can optionally make calls to the AbuseIPDB API if this feature is enabled.

  • AbuseIPDB's Terms of Service: https://www.abuseipdb.com/legal
  • AbuseIPDB's Privacy Policy: https://www.abuseipdb.com/privacy

• WhatIsMyBrowser.com API: The plugin features integration with WhatIsMyBrowser.com for advanced user agent analysis. It requires an API key from WhatIsMyBrowser.com which you will need to obtain and configure in the plugin settings.

  • WhatIsMyBrowser.com Terms of Service: https://www.whatismybrowser.com/about/legal/
  • WhatIsMyBrowser.com Privacy Policy: https://www.whatismybrowser.com/about/legal/

Please note that by using these external services, you are agreeing to their respective terms and privacy policies. Ensure that you have the necessary rights and permissions to share data with these services in compliance with data protection laws applicable to your website's audience.

Upload the wordfence-to-cloudflare directory to your /wp-content/plugins/ directory, or install the plugin through the WordPress plugins screen directly. Activate the plugin through the 'Plugins' screen in WordPress. Use the Settings -> Wordfence to Cloudflare screen to configure the plugin.

Can I manually trigger the IP synchronization process? Yes, the plugin provides a button to manually trigger the synchronization process. This can be helpful in urgent situations or when you want to ensure immediate synchronization of blocked IPs.

Where is my Cloudflare key stored? Your Cloudflare key is securely stored in the WordPress's built-in options table. It is encrypted and can only be accessed by authorized processes.

Can I customize the security settings of the plugin? Yes, the plugin offers flexible settings that allow you to adjust the blocked hits threshold, choose between domain-specific or account-wide blocking, set the cron interval, and enter your Cloudflare credentials.

How does the plugin reduce the server load? By offloading the task of blocking malicious IPs to Cloudflare, the plugin reduces the load on your server. This can improve its performance and responsiveness, particularly during DDoS attacks or when dealing with a large number of blocked IPs.

What are the requirements to use this plugin? This plugin requires an active Wordfence and Cloudflare account. You also need to have access to your Cloudflare API key and Zone ID to configure the plugin.