Firewall blocked - I'm getting 403 errors, unable to connect or timeouts
If you find that you are unable to:
- open your website - it just times out or takes too long to respond
- connect to webmail or cPanel - it just times out or takes too long to respond
- send or receive email (your email software says it can't connect to the server)
then it is most likely that the external/public IP address of your internet connection has been blocked for some reason.
There are some other reasons why you might see a 403 error and these are mentioned later in this document.
How to remove your IP address from the firewall
You can get your IP address unblocked easily from within your Krystal Client Area.
From the client area dashboard menu, click on the Hosting link.
Simply click the CHECK FIREWALL button. If you are blocked you will see CHECKING, UNBLOCKING, UNBLOCKED in sequence. If you are not blocked you will simply see CHECKING followed by ALLOWED.
Alternatively, click the MANAGE button - the following screen will automatically check and unblock your IP address if it was blocked.
You can click re-check here to check again. You also have the option to check a different IP address - perhaps for a remote designer or developer who's been locked out. You can easily find out your external/public IP address by visiting View My IP.
About our IP address blocking policies
In order to protect our service from abuse, the following events will lead to your IP address being blocked. Usually this is only temporary (usually 20 minutes), but it may become permanent if you are temporarily blocked more than 3 times within a 24 hour period. Common reasons for your IP address becoming blocked include (in order of popularity):
- Using an incorrect username/password combination into cPanel more than 5 times in a few minutes.
- Using an incorrect email address/password more than 5 times in a few minutes into webmail. If you have misconfigured Outlook, Mail or other email software on your PC or Mobile device to automatically fetch email using the wrong email address/password combination, this will also cause your IP address to be blocked.
- Using an incorrect username/password more than 5 times in a few minutes into a password protected web page.
- Collecting POP3 email more than 90 times in an hour (from a specific IP address from a specific mailbox).
- Accessing a page using URL parameters that have been blocked by Mod Security more than 5 times in a few minutes.
Web developers - Other reason you may see a 403
Missing index file in the URL you have browsed
If you are trying to browse to your website and you get a 403 error, then you have probably not uploaded a suitable index file into your public_html/ directory. Read our article Where should I upload my website files?
Incorrect file permissions
In order for the world to be able to browse your website, you have to give it permission! This is usually all handled automatically when you upload files. However, if you have been working with permissions, then it's possible something might be set incorrectly. Please read the article What file and directory permissions should I use for my web files?
Mod Security has blocked access to the page due to a rule infringement
If you have just added new scripts/modules/plug-ins to your website it is also possible that mod_security might be triggered. While this is rare, if you experience a series of 403 forbidden errors, and then find yourself unable to connect, then it is likely that mod_security has logged security events which have lead to your IP being blocked temporarily.
In this event, please contact us giving full details of the URL you were using, the time of the events and your public IP address (available from View My IP). We will then analyse the mod security logs and find out what rules were triggered, if any.