BigScoots

If you have received the following error message when trying to install or use Jetpack, it is because we disabled access to your xmlrpc.php script by default. We have this disabled because attackers have the ability to brute force as well as send out attacks using an exploit against the pingback ability. (<a href="http://blog.sucuri.net/2014/07/new-brute-force-attacks-exploiting-xmlrpc-in-wordpress.html" rel="nofollow noopener noreferrer" target="_blank">Read More</a>)

To enable access to your xmlrpc.php we first recommend upgrading WordPress to the latest version along with installing a plugin that will disable certain functionalities of the script that may potentially allow an attacker to use them maliciously. The plugin is available <a href="https://wordpress.org/plugins/disable-xml-rpc-pingback/" rel="nofollow noopener noreferrer" target="_blank">here</a>.

Using FTP or File Manager browse to your public_html folder and inside open the .htaccess file. Once opened, add the following to the top.

&lt;FilesMatch "^(xmlrpc\.php)"&gt; Order Deny,Allow # Whitelist Jetpack/ Automattic CIDR IP Address Blocks Allow from 192.0.64.0/18 Allow from 209.15.0.0/16 Allow from 66.155.0.0/17 Allow from wordpress.com Allow from 45.56.2.139 Deny from all &lt;/FilesMatch&gt;

Save and your xmlrpc.php script will once again be reachable by Jetpack.

The JetPack server was unable to communicate with your site

Go to BigScoots.com

Find answers and get help from Intercom Support and Community Experts

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Title

Track the progress of all tickets related to your company.

Tickets portal.

{assigneeName} needs more information from you