Too many bots from China

N

new_view

Member
Licensed customer
Is anyone experiencing a huge amount of views from China on GA4?

I suppose these could be LLMs or AI bots crawling every second.

Just wanna know if y'all XenForo users are experiencing the same.
 

Attachments

  • Screenshot (224).webp
    Screenshot (224).webp
    22.6 KB · Views: 7
Yes, this is fairly common.

If your site doesn't serve a Chinese audience then it would be recommended to just ban the entire country. If you use Cloudflare (even the free version) this can be accomplished in a couple minutes. If you don't use Cloudflare then there will be more work involved.

With the ban in place it will stop a large percentage of these hits, but not all, as there are always ways to get around something.
 
new_view said:
Is anyone experiencing a huge amount of views from China on GA4?
Click to expand...
If you had looked around in the forum before posting the thread you had no doubt reconized that this is quite a common issue, comes in waves, countries change and also, if the traffic shows up in Google Analytics or not. The most active thread around the topic is this:

Levina

Thread 'Crazy amount of guests'

I have a small forum, usually a few hundred guests at most. The last days the number of guests have been unusually high, around 3000 and climbing. We now have over 4800 guests. That's not normal. Many "Viewing unknown page" or "Latest content", with a warning sign. IP addresses are from all corners of the world. Many from south America, Brazil mostly. Also saw quite a number from Vietnam of all places, but everywhere else too.

We're on Cloud and I don't know what to do. Could we be under attack? We have been in the past, a few times I think. For reasons I cannot possibly fathom; we're a...
  • Like
 
If you're running through WHM you have the option of banning countries through CSF.

Log in to WHM as root.
Navigate to Plugins -> ConfigServer Security & Firewall.
Click Firewall Configuration.
Find the Country Code Lists and Settings section:
CC_ALLOW_FILTER: Enter the 2-letter ISO country codes you want to allow (e.g.US,CA). All other countries will be blocked.
CC_DENY: Enter the 2-letter ISO country codes you want to block (e.g.CN,RU).
Click Change and restart the firewall (csf -r) to apply changes.
 
smallwheels said:
If you had looked around in the forum before posting the thread you had no doubt reconized that this is quite a common issue, comes in waves, countries change and also, if the traffic shows up in Google Analytics or not. The most active thread around the topic is this:

Levina

Thread 'Crazy amount of guests'

I have a small forum, usually a few hundred guests at most. The last days the number of guests have been unusually high, around 3000 and climbing. We now have over 4800 guests. That's not normal. Many "Viewing unknown page" or "Latest content", with a warning sign. IP addresses are from all corners of the world. Many from south America, Brazil mostly. Also saw quite a number from Vietnam of all places, but everywhere else too.

We're on Cloud and I don't know what to do. Could we be under attack? We have been in the past, a few times I think. For reasons I cannot possibly fathom; we're a...
  • Like
Click to expand...

Cool, got it.
 
philmckrackon said:
If you're running through WHM you have the option of banning countries through CSF.

Log in to WHM as root.
Navigate to Plugins -> ConfigServer Security & Firewall.
Click Firewall Configuration.
Find the Country Code Lists and Settings section:
CC_ALLOW_FILTER: Enter the 2-letter ISO country codes you want to allow (e.g.US,CA). All other countries will be blocked.
CC_DENY: Enter the 2-letter ISO country codes you want to block (e.g.CN,RU).
Click Change and restart the firewall (csf -r) to apply changes.
Click to expand...

I kinda don't wanna ban all traffic from China.
 
Might have to block Singapore, too. I find a lot of the Chinese bots hitting my site are coming from data centers there that belong to or host Chinese companies (e.g. Huawei is one I know comes from Singapore).
 
Mendalla said:
Might have to block Singapore, too. I find a lot of the Chinese bots hitting my site are coming from data centers there that belong to or host Chinese companies (e.g. Huawei is one I know comes from Singapore).
Click to expand...

I concur; in fact, Singapore was a contender in terms of bots.
 
You must log in or register to reply here.
Back
Top Bottom