Is ww.wp.xz.cn restricting visits from China region?
-
Hi there,
When I go to upgrade to WordPress 5.2.4, and see it’s release notes, but found the website return HTTP 429 (Too Many Requests). It’s my first time to visit today. So it’s impossible to say visiting frequently, then I found all China region is restricting as HTTP 429:
http://www.17ce.com/site/http/20191018_55ae4a50f18911e9ab8c05c7fa0e7c63:1.html
The people in China could be hard to download new version WordPress. I sad to see ww.wp.xz.cn restricting visits from China, and wonder why. I hope it will be fixed.
Detail information:
$ curl -v https://ww.wp.xz.cn * Trying 198.143.164.252... * TCP_NODELAY set * Expire in 200 ms for 4 (transfer 0x55a96b399f50) * Connected to ww.wp.xz.cn (198.143.164.252) port 443 (#0) * ALPN, offering h2 * ALPN, offering http/1.1 * successfully set certificate verify locations: * CAfile: none CApath: /etc/ssl/certs * TLSv1.3 (OUT), TLS handshake, Client hello (1): * TLSv1.3 (IN), TLS handshake, Server hello (2): * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8): * TLSv1.3 (IN), TLS handshake, Certificate (11): * TLSv1.3 (IN), TLS handshake, CERT verify (15): * TLSv1.3 (IN), TLS handshake, Finished (20): * TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1): * TLSv1.3 (OUT), TLS handshake, Finished (20): * SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384 * ALPN, server accepted to use h2 * Server certificate: * subject: OU=Domain Control Validated; CN=*.ww.wp.xz.cn * start date: Nov 6 17:42:01 2017 GMT * expire date: Dec 15 20:11:21 2020 GMT * subjectAltName: host "ww.wp.xz.cn" matched cert's "ww.wp.xz.cn" * issuer: C=US; ST=Arizona; L=Scottsdale; O=GoDaddy.com, Inc.; OU=http://certs.godaddy.com/repository/; CN=Go Daddy Secure Certificate Authority - G2 * SSL certificate verify ok. * Using HTTP2, server supports multi-use * Connection state changed (HTTP/2 confirmed) * Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0 * Using Stream ID: 1 (easy handle 0x55a96b399f50) > GET / HTTP/2 > Host: ww.wp.xz.cn > User-Agent: curl/7.64.0 > Accept: */* > * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4): * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4): * old SSL session ID is stale, removing * Connection state changed (MAX_CONCURRENT_STREAMS == 128)! < HTTP/2 429 < server: nginx < date: Fri, 18 Oct 2019 11:29:11 GMT < content-type: text/html < content-length: 162 < <html> <head><title>429 Too Many Requests</title></head> <body> <center><h1>429 Too Many Requests</h1></center> <hr><center>nginx</center> </body> </html> * Connection #0 to host ww.wp.xz.cn left intact
-
Hi @yui @jdembowski
Thanks for your reply.
I know ngx_http_limit_req_module is useful nginx module for rate limiting, but it’s hard to believe that most of China are restricted[1]. Much looks like geographical blocking with IP Geolocation Database[2], and it returns HTTP 429 rather than HTTP 403.
I also see that some posts in Chinese forum complain they can’t visit ww.wp.xz.cn:
https://www.v2ex.com/t/610269English Translation:
https://translate.google.com/translate?sl=zh-CN&tl=en&u=https%3A%2F%2Fwww.v2ex.com%2Ft%2F610269
https://www.hostloc.com/thread-597309-1-1.html[English Translation:
https://translate.google.com/translate?sl=zh-CN&tl=en&u=https%3A%2F%2Fwww.hostloc.com%2Fthread-597309-1-1.html][1] An online ping website show that its probe in many Chinese locations are restricting as “429”, see “Http状态”(HTTP status code) on the table: http://www.17ce.com/site/http/20191019_fb43e0f0f26111e9ab8c05c7fa0e7c63:1.html
[2] ngx_http_geoip_module with MaxMind databases could do this: https://nginx.org/en/docs/http/ngx_http_geoip_module.html;
Nginx Plus also provides a similar feature: https://docs.nginx.com/nginx/admin-guide/security-controls/controlling-access-by-geoip/
- The topic ‘Is ww.wp.xz.cn restricting visits from China region?’ is closed to new replies.