Visitors getting 403 errors

New Member Joined: Jul 24, 2005 Posts: 12

Some users to my site are getting 403 errors. They only thing that seems to be common among them so far is that they are all outside of the US. Could this be an issue with Sentinel in some way?

Posted: Mon Apr 24, 2006 2:47 pm

Possibly, are those IPs being blocked anywhere?

Posted: Mon Apr 24, 2006 3:01 pm

Not that I've been able to find, but that could be the case. There was another guy that set up this site before me and I haven't been able to get in contact with him. Any locations I could look for blocked IPs?

Posted: Mon Apr 24, 2006 3:17 pm

Go into Administration, then Sentinel then Blocked IP Menu, then Display Blocked IP's.

The blocked IP's will also be listed at the bottom of your .htaccess file that should be in your root Nuke directory.

Posted: Mon Apr 24, 2006 9:47 pm

No blocked IPs in Sentinel, but the .htaccess file has some things listed at the bottom as "deny from". Are those blocked addresses?

Site Admin/Owner Joined: Aug 27, 2002 Posts: 17088

Yes they are.

Posted: Tue Apr 25, 2006 7:26 am

Would it be wise to remove all of those banned IPs out of there?

Posted: Tue Apr 25, 2006 7:35 am

Depends what they are and who added them and why. Why don't you post them and let us have a look.

Posted: Tue Apr 25, 2006 8:27 am

Ok, here they are:

deny from 12.42.86.122
deny from 62
deny from 64.94.116.60
deny from 67.19.107.242
deny from 69.56.145.164
deny from 69.93.213.58
deny from 80
deny from 81
deny from 84
deny from 193
deny from 195
deny from 200
deny from 202
deny from 203
deny from 212
deny from 213
deny from 219
deny from 62.0.0.0/8
deny from 84
deny from 193
deny from 195
deny from 200
deny from 202
deny from 203
deny from 212
deny from 213
deny from 219
deny from 66.235.211.67
deny from 66.90.118.45

Posted: Tue Apr 25, 2006 8:35 am

What a mess! I would remove everything except deny from 200

Posted: Tue Apr 25, 2006 8:54 am

Heheh Ok, thanks for all the help!

Posted: Tue May 02, 2006 9:42 am

One visitor that used to have no trouble getting on the site, now gets a message "You are using an Invalid IP to access this site" Should I clear that Deny from 200 as well or is this a new problem?

Posted: Tue May 02, 2006 12:02 pm

This normally happens when running the system on your desktop (localhost/127.0.0.1). It is a safety feature to keep people from trying to access your site w/o a valid IP. We have added a setting in config.php named $bypassNukeSentinelInvalidIPCheck and set the default value to FALSE. When running on your local machine (or wherever your test site is) you can set the value to TRUE in order to have NukeSentinel™ bypass that check. Please note that this should only be used when testing locally and not in a production environment. Basically, he's using either no IP or a reserved IP.

Posted: Wed May 03, 2006 8:54 am

He says that he isn't doing anything different from when he was able to view the site a few weeks ago. Said that whether he clicks a link to the site or if he types it into a browser he still gets the same thing.

Posted: Wed May 03, 2006 9:18 am

Tell him to goto [ Only registered users can see links on this board! Get registered or login! ] and report back his IP

Posted: Wed May 03, 2006 11:47 am

His IP is 124.106.220.196

Posted: Wed May 03, 2006 11:53 am

Then look in your NukeSentinel reserved ranges for that IP and remove it. Make sure it's not in .htaccess either.