Apache return 429 only to bots, for specific urls

Question

i have a Magento website working with Apache2 and every day i get bots crawling urls that i do not want to and i would like to return 429 for specific urls.

i have tried this in my htaccess

<ifModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTP_USER_AGENT} (Yahoo!\Slurp|semrushbot) [NC]
Redirect 429 /shop/ricerca/
</ifModule>

where my bots are:

yahoo slurp googlebot yandex semrush etc

and path to protect are:

/path/toprotect/

/path/to/protect2/

tailing access logs seems my snippet is not working.

any one can help me?

eventually if too messy, i'll just use nginx as reverse proxy and filter bots from there where i have more experience

Answer 1

There are several errors:

• You are mixing mod_rewrite directives (RewriteCond) with mod_alias directives (Redirect). You should a have RewriteRule, instead.

• You can't use HTTP 429 Too Many Requests with a redirect.

Any valid HTTP response status code may be specified, using the syntax [R=305], with a 302 status code being used by default if none is specified. The status code specified need not necessarily be a redirect (3xx) status code. However, if a status code is outside the redirect range (300-399) then the substitution string is dropped entirely, and rewriting is stopped as if the L were used.

• The escape character \ in Yahoo!\ Slurp is for escaping the space you are missing.

Result after these corrections, redirecting everything to /shop/ricerca/:

<IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteCond %{HTTP_USER_AGENT} (Yahoo!\ Slurp|semrushbot) [NC]
    RewriteRule "(.*)" "/shop/ricerca/" [L,R=302]
</IfModule>

Or, if you are not trying to redirect to /shop/ricerca/ but protect it with 429 Too Many Requests:

<IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteCond %{HTTP_USER_AGENT} (Yahoo!\ Slurp|semrushbot) [NC]
    RewriteRule "^/shop/ricerca/(.+)" - [R=429]
</IfModule>