Access forbidden by rule error

0
Hi all,   We have received multiple errors to do with access requests being blocked to our application.   See below, 2025-09-25T00:17:35.382489 [APP/PROC/WEB/0]  2025/09/25 00:17:35 [error] 344#0: *3467 access forbidden by rule, client: 172.105.94.12, server: _, request: "GET / HTTP/1.1", host: "Application,url.com"2025-09-25T00:21:17.176733 [APP/PROC/WEB/0]  2025/09/25 00:21:17 [error] 344#0: *3475 access forbidden by rule, client: 2600:3c03::2000:8aff:fe81:5ff9, server: _, request: "POST /admin/login/?next=/admin/ HTTP/1.1", host: "Application,url.com"2025-09-25T00:21:17.965632 [APP/PROC/WEB/0]  2025/09/25 00:21:17 [error] 344#0: *3476 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /?cachebuzzzt=1 HTTP/1.1", host: "Application,url.com"2025-09-25T00:21:17.976042 [APP/PROC/WEB/0]  2025/09/25 00:21:17 [error] 344#0: *3475 access forbidden by rule, client: 45.33.85.33, server: _, request: "PUT /testing-put-zz.txt HTTP/1.1", host: "Application,url.com"2025-09-25T00:21:17.994062 [APP/PROC/WEB/0]  2025/09/25 00:21:17 [error] 344#0: *3477 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /randomz.js?abc=1 HTTP/1.1", host: "Application,url.com"2025-09-25T00:21:18.942531 [APP/PROC/WEB/0]  2025/09/25 00:21:18 [error] 344#0: *3478 access forbidden by rule, client: 45.33.85.33, server: _, request: "POST /admin HTTP/1.1", host: "Application,url.com"2025-09-25T00:21:18.959006 [APP/PROC/WEB/0]  2025/09/25 00:21:18 [error] 344#0: *3478 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /testing-put-zz.txt HTTP/1.1", host: "Application,url.com"2025-09-25T00:21:18.960257 [APP/PROC/WEB/0]  2025/09/25 00:21:18 [error] 344#0: *3478 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /?cachebuzzzt=1 HTTP/1.1", host: "Application,url.com"2025-09-25T00:21:20.061449 [APP/PROC/WEB/0]  2025/09/25 00:21:20 [error] 344#0: *3476 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /randomz.js?abc=1 HTTP/1.1", host: "Application,url.com"2025-09-25T00:44:14.854786 [APP/PROC/WEB/0]  2025/09/25 00:44:14 [error] 344#0: *3526 access forbidden by rule, client: 139.162.138.59, server: _, request: "GET / HTTP/1.1", host: "Application,url.com"2025-09-25T01:28:41.000125 [APP/PROC/WEB/0]  2025/09/25 01:28:40 [error] 344#0: *3616 access forbidden by rule, client: 2600:3c03::2000:8aff:fe81:5ff9, server: _, request: "GET /randomzgg?zzz=132 HTTP/1.1", host: "Application,url.com"2025-09-25T01:28:41.000782 [APP/PROC/WEB/0]  2025/09/25 01:28:41 [error] 344#0: *3616 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET / HTTP/1.1", host: "Application,url.com"2025-09-25T01:28:42.139231 [APP/PROC/WEB/0]  2025/09/25 01:28:42 [error] 344#0: *3618 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /randomzzz?zzz=123 HTTP/1.1", host: "Application,url.com"2025-09-25T01:28:42.140548 [APP/PROC/WEB/0]  2025/09/25 01:28:42 [error] 344#0: *3618 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /_next/webpack-hmr HTTP/1.1", host: "Application,url.com"2025-09-25T01:28:42.907987 [APP/PROC/WEB/0]  2025/09/25 01:28:42 [error] 344#0: *3619 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /randomzzz?zzz=123 HTTP/1.1", host: "Application,url.com"2025-09-25T01:28:42.916066 [APP/PROC/WEB/0]  2025/09/25 01:28:42 [error] 344#0: *3619 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /json/list HTTP/1.1", host: "Application,url.com"2025-09-25T01:41:31.579716 [APP/PROC/WEB/0]  2025/09/25 01:41:31 [error] 344#0: *3646 access forbidden by rule, client: 139.162.190.210, server: _, request: "GET / HTTP/1.1", host: "Application,url.com"2025-09-25T02:02:31.425669 [APP/PROC/WEB/0]  2025/09/25 02:02:31 [error] 344#0: *3689 access forbidden by rule, client: 172.105.94.62, server: _, request: "GET / HTTP/1.1", host: "Application,url.com"2025-09-25T02:24:33.917144 [APP/PROC/WEB/0]  2025/09/25 02:24:33 [error] 344#0: *3734 access forbidden by rule, client: 2600:3c03::2000:8aff:fe81:5ff9, server: _, request: "GET /script/ HTTP/1.1", host: "Application,url.com"2025-09-25T02:24:34.145281 [APP/PROC/WEB/0]  2025/09/25 02:24:34 [error] 344#0: *3735 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /jenkins/script HTTP/1.1", host: "Application,url.com"2025-09-25T02:24:34.366333 [APP/PROC/WEB/0]  2025/09/25 02:24:34 [error] 344#0: *3734 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /jenkins/manage/script HTTP/1.1", host: "Application,url.com"2025-09-25T02:24:34.592061 [APP/PROC/WEB/0]  2025/09/25 02:24:34 [error] 344#0: *3736 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /scrip%74/ HTTP/1.1", host: "Application,url.com"2025-09-25T02:24:34.919375 [APP/PROC/WEB/0]  2025/09/25 02:24:34 [error] 344#0: *3734 access forbidden by rule, client: 45.33.85.33, server: _, request: "GET /jenkin%73/scrip%74 HTTP/1.1", host: "Application,url.com"   Does anyone know if these are to do with the fact that our backup data centres are located in Frnakfurt?   Or are these mailicious access attempts?   We have set up access restrictions, and they work as required, but looking to do a bit of investigations into these as they are occurring on a daily basis.
asked
1 answers
0

This looks like standard scanning of your site that takes place all the time, just someone trying to see if there is an option to access your application by targeting specific urls. Seen this a lot with different customers, nothing that you can do about this and the rules are keeping them out.

answered