My site is blocked by Roskomnadzor. Changing the IP does not help, it is also blocked. If I remove the "A" record and set the ns server to cloudflare can I route the site through it? thereby hiding the ip of your vps?

There are two types of website blocks:

• blocking by IP address;
• blocking by domain name;

If you have the first case, then yes, using a service to protect against DDOS helps, because Cloudflare replaces the site's DNS records with its own and all requests to the site go through their servers, as a result of which the IP address changes.

But you need to understand that Roskomnadzor does not shy away from banning the IP addresses of CloudFlare itself. And this means that many other sites using the same service for protection will also be blocked.

In the end, this is not the best option, because sooner or later your site will be blocked again.

Roskomnadzor itself does not recommend using Cloudflare in this regard:

CloudFlare representatives refuse to cooperate and do not respond to official notifications from Roskomnadzor.

Due to the lack of response from CloudFlare, many honest Internet resources using this CDN service fall under the blocking of telecom operators in the territory Russian Federation.

In order to avoid such situations, we recommend placing websites on the facilities of domestic hosting providers that conscientiously comply with Russian legislation and timely restrict access to Internet resources with information that is prohibited in the Russian Federation.

Of course, that doesn't stop anyone.

The easiest way to open a blocked site without anonymizers

Allow me a lyrical digression. I don't understand what is the point of blocking sites, because it is simply IMPOSSIBLE to do this completely. No matter how hard the authorities try, there will always be easy ways to bypass and visit blocked sites. Usage VPN services and proxies, various anonymizers. They are also blocked, so I will tell everyone who stumbles upon a blocked site and cannot find the anonymizer, but wants to see its content. The simplest way- use Google cache to view.

To see search results with the desired page, just enter a link to it in the Google search field.

This, of course, will not help if the service page is blocked, or contains some kind of audio or video content. There is no way to do without a proxy server. But if you just need to see the text on the page, this is a trouble-free and fast way.

What to do if a site is blocked by name?

This is the second type of blocking, which is more correct, because it does not block other sites located behind the same IP. Recently, this type of blocking has been increasingly used by providers. It is much more complicated and requires more sophisticated equipment on the provider's side. How this is done technically, I told on the pages of my blog,. In this case, it is obvious that neither changing the IP address will help, so using CloudFlare does not solve the problem. Here you can not do without changing the domain.

Well, for the user Vasya, let's summarize: in your case, it seems that the blocking is performed precisely by the IP address. Therefore, using Cloudflare can make the site accessible. But only for a while, until Roskomnadzor bans new addresses.

UPDATE 10/22/2016:

Per Last year, the situation has changed significantly, which can be tracked by the comments to this article. But I'll update the post anyway.

How and why is the RKN blocking websites now?

On the this moment Roskomnadzor blocks websites through a hoster. Hosting in Russia or another “tolerant” country like Germany is a 99% potential blocking danger if you can dig into the content. Moreover, sites are blocked not only with obvious smut-porn. Gambling sites are blocked - casinos and betting. Block sites, online stores that sell ordinary things like clothes, shoes, medicines.

The initiative most likely comes from competitors - at the knock on you, the ILV begins to "act". He starts a case, a trial takes place without your knowledge, you are already informed about the fact that you have been entered into the register of prohibited sites.

How to check your site - is it added to the registry?

In this report, it will be visible by redirects to stubs or simply by inaccessibility - where which provider blocks. Somewhere the blocking is configured without a stub, immediately on 403. Where there is nothing in the redirect field, and the page size matches yours.

What to do if the site is blocked by providers?

Change domain.

1. Set a 301 redirect to the new domain.
2. Change domain in CMS
3. Make a site move in the webmaster panels in Google and Yandex.

What if the new domain is blocked?

Then the procedure should be repeated if it is beneficial to you. And so it is possible ad infinitum.

Will weight, trust, positions, traffic be transferred when redirecting to a new domain?

Usually partially. The sooner a domain change is made, the theoretically it should be painless, while maintaining traffic and positions in search engines. If the old domain is already partially or completely unavailable, then you need to wait until the search engines glue and re-index. Here, most likely, there will be a loss of traffic and positions.

Admin

IT specialist with higher technical education and 8 years of experience system administration. . I give free consultations on information technology, the operation of computers and other devices, programs, services and sites on the Internet. If you didn't find necessary information, then

• Dear sites.
  I want to bring to your attention TelegramBot that monitors the blocking of your site (domain name). The bot was developed by programmers tired of being blocked by our beloved RosKomNadzor. We tested the Bot on many resources and got good result and stable work, every day the Bot is analyzed and updated, supplemented with different functionality. A constant check by the Bot on the site https://eais.rkn.gov.ru will not let you miss precious time to transfer WECA of your site from a blocked domain to a new domain, after blocking a domain by RosKomNadzor you will have about a week to move to a new domain. Twice a day your domain is checked on the site https://eais.rkn.gov.ru. What you will get is advice, settings, a dedicated chat with a Bot that will provide information about your domain, as soon as the domain is entered into the registry, you will receive a notification in Telegram within 24 hours. By sending commands to the Bot, you can delete and add sites for verification, view their list, it is very simple and easy to be aware of. You will not need to go to RosKomNadzor and check your domain in the registry every day, week, month, everything will be done by the Bot and send you messages, you will only have to buy a new domain in time, move to it and add it to the check on the Roskomnadzor website. Attached screenshots of the Bot for confirmation.
  The amount of the service is 1000 rubles per month, the purchase of the service for six months or a year comes at a discount. It is possible to make individual settings for your needs.

  For advice in Telegram, write @HelpBotRKN Regards, Sergey

  

Previously managing an Internet service for the protection of personal data, and for the last 3 years an Internet service for protecting sites from losses and downtime as a result of Internet threats, I regularly explain to site owners what needs to be done so that the site is not blocked and hacked due to a violation security legislation and non-compliance with site protection measures

Based on the accumulated experience, the main site security requirements that site owners need to know and comply with have been aggregated. If they are not aware of these requirements and do not comply with them, then sooner or later the site will be blocked by Roskomnadzor, the hosting provider, search engines or hacked by intruders.

1. Storage of personal data of Russian citizens on the territory of the Russian Federation

Hour X is near - it is necessary to transfer sites with personal data of Russians to the territory of the Russian Federation before September 1, 2015! It is the site with the database that is subject to transfer, and not just the database - a lot has been written about this, and this is the position of the main regulator in this area - Roskomnadzor.
In addition, the territorial location of such data will need to be reported to the territorial body of Roskomnadzor in a written notification on the processing of personal data.

If the site with personal data is not transferred to the territory of the Russian Federation, its owner faces a small fine. But, if the site is not transferred even after paying the fine, the site will be blocked by hosting providers at the request of Roskomnadzor.

No one doubts that this requirement will be checked, but how exactly is not yet known, but it is worth remembering that today Roskomnadzor is fulfilling its duties of blocking sites with a “light in the eyes”.

Therefore, if possible, try to transfer the site with personal data of users (citizens of the Russian Federation) to Russian hosting before September 1 or a little later.

2. Publication on the website of the organization's policy regarding personal data

Almost all sites allow users to register and leave their personal data. Federal Law No. 152-FZ “On Personal Data” imposes on such sites certain requirement: in public access it is necessary to publish a document defining the company's policy regarding the processing of personal data, as well as information on the implemented requirements for the protection of personal data.

To be precise, then this requirement spelled out in Part 2 of Article 18.1 of the Federal Law No. 152-FZ “On Personal Data:

“The operator that collects personal data using information and telecommunications networks is obliged to publish in the relevant information and telecommunications network a document that defines its policy regarding the processing of personal data and information on the requirements for the protection of personal data being implemented, as well as to provide access to the specified document using the means of the corresponding information and telecommunication network”.

Such a document is usually the “Personal Data Processing Policy”, which is better placed on the website in the form of a pdf file with the seal and signature of the CEO. Sample this document can be found on the Internet or on services for preparing documents based on personal data.

3. Collection of consents to the processing of personal data

The same law obliges sites that collect personal data to take consent to the processing of personal data from everyone who registers or leaves their personal data. At the same time, consent can be given in any form that allows you to confirm the fact of its receipt, unless otherwise provided in Law No. 152-ФЗ “On Personal Data”.

Compliance with this requirement protects the site owner from complaints from individuals to Roskomnadzor about non-compliance with his rights as a subject of personal data. If a government agency receives such a complaint, the site is monitored and the company's activities are checked. The verification will include a request for information on the collection of consents to the processing of personal data and, possibly, an on-site verification.

Here is an example of a letter from Roskomnadzor to one of our clients. Pay attention to point 1).

In order not to bring the matter to blocking the site and fines, place next to the registration form and feedback text about the user's consent to the collection and processing of his personal data.

I share 3 life hacks about this:

1. Consent may not be collected, there are rules for using the site or other public offer (for example, the User Agreement) on the site. It should contain information about the site, what services and features it provides for registering users.
2. If you collect personal data about the state of health, political and religious views and other data that is critical for a person, or provide personal data to other organizations, then it is better to separately post consent to the processing of personal data on the site. To do this, place on the registration page the phrase: “By registering, you consent to the processing of your personal data” and a link to a public offer of consent to the processing of personal data.
3. Include in your consent to the processing of personal data the consent to promotional mailings by e-mail and sms in order to fulfill the requirement of the Law “On Advertising” at the same time.

4. SSL certificate on the site

An SSL certificate protects the channel by encrypting all data transmitted between the site and the user, and increases user trust.

For those who do not know or have forgotten, the SSL certificate is displayed as a green padlock next to the site address in the browser.

An SSL certificate verifies ownership of a domain (for example, that you are connecting to a real SiteSecure site) and that the site is owned by a particular company. In the latter case, the SSL certificate displays in address bar browser organization name:

In Europe and the USA, it is almost impossible to imagine any online store, commercial website or Internet service without an SSL certificate. In Russia, SSL certificates are only gaining momentum, but many companies have already installed it on their websites. An SSL certificate, in addition to protecting the channel from data interception, increases customer confidence in the site and promotes SEO promotion- Google has officially announced that since August 6, 2014, a valid SSL certificate is a positive factor in ranking a site in search results.

5. Site backup

In the course of protecting and disinfecting client sites within the framework of our Internet service, my colleagues and I often encounter sites that are “disfigured” by viruses. Much faster and easier to restore a site from backup, and then fix vulnerabilities and protect against infections. But there are times when the site is not subject to treatment due to the lack of a backup copy.

Many people expect hosting providers to automatically back up all sites, but in reality this feature is often not included and not paid for.

How can not having a backup harm a site?
A typical security problem is defacement, when a group of hackers immediately hacks into a server with websites and replaces the main pages or all files with them. This is what the main page of the site looks like after hacking and defacement (the contacts of the hacker group are hidden):

In our practice, there were cases when the site owner or the person responsible for the site did not have a backup copy to restore pages after defacement. Therefore, be sure to check whether backup hosting site. And since hosts also have problems, use an additional backup just in case.

6. Protecting the site from DDOS attacks

DDoS attacks have become a tool to undermine reputation, income and blackmail. Companies use them to undermine the sales and reputation of their competitors by making their websites inaccessible to potential clients. This method is especially practiced in those industries where there is seasonal demand (tourism, flower sales, Santa Claus service in New Year, sale of air tickets), as well as websites of the media, political parties and the government. At the same time, attacks are often made on the sites of small and medium-sized companies, since almost all large companies have already protected their sites from DDoS attacks.

It is worth noting the market e-commerce. It is on it that DDoS attacks are especially sensitive, because the site is one of key assets and its inaccessibility leads to direct losses.

At the same time, the number of DDoS attacks on websites is steadily growing. This is due to an increase in the number of botnets worldwide (infected computers that carry out an attack without the knowledge of its owner) and a decrease in prices for organizing DDoS attacks (the cost of 1 hour of attack has decreased from $38).

Proper server configuration by technical specialists, site monitoring and the use of services to protect against DDoS attacks will protect against this threat.

7. Monitoring the security and protection of the site

Everyone has long been accustomed to installing antiviruses on computers, laptops, and already even on smartphones. But with regard to site protection, the situation is different - little attention is paid to this. Although there are good reasons to be concerned.

According to a security study of 320,000 commercial sites in Russia, conducted in the 1st quarter of 2015, every 10th site is either infected and blocked by search engines, or has security problems due to which it will be blocked by search engines and antiviruses. Although search engines they do not detect such problems quickly, but if they do, then the average time they block the site is 7 days. Therefore, if such problems are detected and corrected promptly, the site and its owner will not be in danger of blocking the site.

At the same time, it is possible to quickly identify security problems on the site. To do this, round-the-clock security monitoring services have been created that promptly notify the owner of the penetration of a virus or the beginning of an attack, and also help in fixing the problem before the site is blocked by search engines.

If we talk about blocking the site by search engines and browsers affiliated with them (Chrome, Yandex.Browser and Opera), then this looks like a warning when trying to access a blocked site.

Information about the blocking of sites by Roskomnadzor has long ceased to be out of the ordinary. When employees of this department discover resources with content of a truly extremist nature or promoting pedophilia and other such heresy, news feeds trumpet about it. But about a much more voluminous side of the matter, when ordinary users become victims, you can find out only in the blogosphere or on the sites of the relevant Internet communities. Their representatives and participants are de facto guilty without guilt, and de jure - in the eyes of the supervisory authority - almost the main distributors of destructive ideas and pillars of the porn industry.

As experience shows, in this case it is not necessary to appeal to the objectivity of the main domestic overseer of legality in the network. He has one comb for all. And if you have already fallen under the distribution or want to avoid it, the proposed article is for you. Why and how sites are blocked, how the created restrictions are bypassed - we will try to objectively answer these and other questions.

Grounds for blocking

Roll out your resource into a cake Federal Service for Supervision in the Sphere of Communications, information technologies and mass communications can for a huge list of reasons. Just a hint of their presence is enough. Moreover, she is not alone in her work. The Prosecutor General's Office, the Ministry of Internal Affairs, Rospotrebnadzor, the Federal Tax Service, and even district prosecutors and courts of general jurisdiction successfully "bring" "shells" to the execution of a particular site. Here you can also single out a completely separate category - “woodpeckers” - competitors or simply dissatisfied users who can stupidly and sometimes groundlessly snitch on you at Roskomnadzor. The result will be the same - blocking. However Let's return to the question of its justification.. Even guided by the list listed above, the appropriate stop list is easily determined:

• Materials or appeals of an extremist nature, including invitations to unauthorized rallies and other mass events.
• Pornography in all its manifestations, especially children's, intimate services.
• Promotion of drugs, methods of their manufacture, purchase, use, etc.
• Provoking suicide, description of its methods.
• Pirated products of the widest range (movies, music, books, etc.).
• Dissemination of knowingly slanderous information.
• Use of profanity on the resource.
• Illegal commerce: attempts to sell cigarettes, alcoholic beverages, medicines, diplomas, certificates, forms, certificates, etc.

Therefore, it cannot be ruled out that one “perfect” day you may suddenly find that your site is blocked. Without warning! And this is only because you decided to meet with former classmates at the monument to Pushkin and posted the corresponding announcement on your page. In the same Prosecutor General's Office, at the request of which Roskomnadzor conducts instant blocking, such an announcement may be seen as a call for an unauthorized mass event. And it is not a fact that the Prosecutor General's Office will be the initiator. It can still be the same “woodpecker” competitor, who will prepare his application in thick colors and with scary pictures. By the way, in this unsightly perspective, at the suggestion of all the same competitors, the harmless and playful post “Afftar, kill yourself with a run!” Can be regarded. Why not coercion to commit suicide? Absurd, you say, and we agree with you, but still give each site owner a recommendation-aphorism from Kozma Prutkov - "Be careful!".

Technical methods of blockade from Roskomnadzor

It all starts with filing a lawsuit. The corresponding "cart" with the requirement to limit the possibilities of a particular resource due to the materials posted on it comes from one of the departments we have mentioned above or "interested" users. The court considers the application and, in case of a positive verdict, Roskomnadzor notifies the hosting provider of the need to eliminate illegal content. The provider accordingly addresses the owner of the site and, if the content continues to hang after the allotted time, then the resource is blocked. To date, two methods of blocking are practiced:

• Deny access to the domain.
• Cleanly disable IP the address of the server hosting the resource.

The second option is used less and less, as this practice is quite harmful and in fact restricts the rights of other users who have nothing to do with breaking the law. In this case, their only fault is that their domains are located on the same IP address, which is the site of the offender, which means they are also blocked. And there can be up to 1000 such domains! Such random obstruction was subjected, for example, in 2013 to the domain of the Yandex company, and a year later - Gazeta. ru. As it turned out, they were simply in bad company.

Today, the first option is more popular. Roskomnadzor established cooperation with the largest domestic hosting and Internet providers, which actively cooperate with Roskomnadzor and timely block access to prohibited sites.

How to find out why the site was blocked?

Make it simple. If you have patience. First of all, send your virtual stops to the registry of banned domain names - blocklist.rkn.gov.ru. Here it is enough to enter the address of the resource, after which you will immediately be given the date and reason for the blocking. But get ready for a lengthy answer that will only contain information about how many pages of illegal information were found on your site.

Where to write if blocked by Roskomnadzor

The fact is that you will not be immediately provided with data on what specific information is being discussed and on which of the pages it is placed. You will receive this information by sending an appropriate letter toThis adress Email protected from spambots. You must have JavaScript enabled to view. . The answer will take about a week. After reviewing it, as well as removing suspicious content, send a notification to the same address, and in a couple of days you will be at work and out of the register of prohibited sites!

The possibility of feedback is also provided on the resource of Roskomnadzor. True, the scheme here is somewhat veiled. Going to the site rkn.gov.ru, you will not find desired link. To do this, click on " home page”, which will transfer to rkn.gov.ru/news/rsoc/ and only here you can find the link “Generate an appeal”, by clicking on which you will finally see the form to fill out.

What to write in case of blocking? (letter example)

Hello.
The page of my site http://site.ru was included in the register of prohibited sites. I inform you that I have eliminated the reason for entering the site in the register, all links to prohibited sites (poker rooms, casinos and bookmakers) have been removed. In this regard, I ask you to remove the page http://site.ru from this registry.
Sincerely,
Ivanov Ivan Ivanovich.

How do site owners bypass blocking?

It is said that there is no reception against scrap if there is no other scrap. So the site owners have replenished the arsenal of opposition to Roskomnadzor with several tools popular in the virtual world. The latter, although they are not in the full sense an analogue of scrap, are no less effective. Let's consider some of them - those that were adopted by the owners of gambling sites.

funny blocking

Roskomnadzor sometimes gets into funny situations. It happened like that. In their unbridled zeal to ban everything and everyone, which sometimes resembles almost blind fanaticism, last year Roskomnadzor “specialists” entered the IP address on which the domain of the supervisory agency itself was located in the register of banned. Thus, the guys disconnected themselves from the Internet.

Were driven into a similar situation Federal Service on supervision in the field of communications, information technology and mass communications of its “masters” and when they “declared war” on the manufacturer software Comodo Group, whose services the department actively used. Another step for yourself! Moreover, Comodo internet security used by many government departments and other organizations, not to mention private users.

Another interesting case occurred when Roskomnadzor blocked the sites YouPorn and PornHub. Unblocking conditions are the same - the elimination of illegal content. True, the department did not clarify anything, just as there was no specifics in the corresponding court decision. In response, PornHub made an offer to Roskomnadzor to provide a premium account in exchange for lifting the block.

The data and facts presented in our review speak about one thing. No one argues with the fact that it is necessary to fight against blackmail and terrorism not only in reality, but also in the Internet space. However, this needs to be done a little more deliberately, and the principles and methods of work should not always be developed according to a single template. This is not about selectivity, but rather about the correct definition of goals and means to achieve them. Until a clear and objective strategy for the work of Roskomnadzor on the Internet is built, an increasing number of ordinary Russians will fall under the rink of involuntary repressions, for whom The World Wide Web became not so much a space for entertainment as a platform for work and earnings.