Add perm IP ban to CFS for Joomla admin attack?

We have been mitigating DDOS attacks for about a month now for a client site and they have now turned their attention to the Joomla admin login screen. What they are doing now is overwhelming the server with Joomla login attempts which Comodo WAF is catching, then throwing a 403 error but, thats still causing high loads on Apache.

Is there a way to tweak the Joomla admin rule so that after XX number of attempts their IP is added to the CSF deny list?


No we don’t integrate with CSF but I think you can setup CSF so it will block these attacks.

Regards, Oleg

We are planning to make some improvements in this area, so check for news and updates.

CSF already have that functionality.