I have a few WP websites and they are being receiving a huge number of requests (about 20 thousand a minute) like:
The problem is that it causes my db to check every time if the entry “adasd-asdasd-asdas-da” or “fds-fdsf-dsfds-fds-f” or … exists in my db and it’s consuming a lot of resources.
I’ve been reading hundreds of links in google and all of them use ip/rate limit which is not a solution to me, I cannot use it. I’ve seen some blogs that when the user hits some wrong page they redirect the user to Google and doing do they get rid of the attack. But how to they check every request in the database without shutting down the whole system?
It’s really hard to solve this problem cause my legitimate URLs are like:
I have already 19 thousand posts, and every time a user sends a request like www.example.com/fdsfds-fdsfs-dfds I need to check it in the database to know if it exists.
I am already using CloudFlare which is doing a great job but I still cannot discover how to check if the request is not in the database in an easy way.
Thank you so much.
Read more here: WordPress attack flood