Incident: Parameter "USE_CUSTOM_REMOTE_IP_HEADER" not working

Manfred

Hi darootler,

apache_request_headers() function strips ‘HTTP_’ from the header name and replaces underscores with dashes. So in your case it should be X-FORWARDED-FOR.

Manfred

Sebastian

Thanks for the report. I have created a ticket for it https://jira.z-hub.io/browse/ZP-1373

darootler

Hi,

option “X-FORWARDED-FOR” is working as expected.

Thank you for creating the ticket and your help.

Regards
Richard

darootler

Hi,

i am using the following versions and i am not able to get the “real” ip:

Ubuntu Ubuntu 18.04.1 LTS
Apache 2.4.29
Z-Push 2.4.4
Kopano 8.6.81

Regards
Richard

Manfred

Hi Richard,

a little bit more context here would be helpful. In your post 7 months ago you wrote that X-FORWARDED-FOR is working as expected.

What has changed since? What is the value of USE_CUSTOM_REMOTE_IP_HEADER in Z-Push config? Is there DEBUG log level entry like:

Using custom header 'HTTP_X_FORWARDED_FOR' to determine remote IP ...

Manfred

darootler

Hi Manfred,

i tried the “X-FORWARDED-FOR” and “HTTP_X_FORWARDED_FOR” for “USE_CUSTOM_REMOTE_IP_HEADER”. I installed Z-Push on a new system, so all components changed. The logs are always filled with the private reverse proxy ip.

Regards
Richard

darootler

Hi,

the value “X_FORWARDED_FOR” is working as expected. Is this wanted? Didn’t match the description:

// Use a custom header to determinate the remote IP of a client.
// By default, the server provided REMOTE_ADDR is used. If the header here set
// is available, the provided value will be used, else REMOTE_ADDR is maintained.
// set to false to disable this behaviour.
// common values: 'HTTP_X_FORWARDED_FOR', 'HTTP_X_REAL_IP' (casing is ignored)

Regards
Richard

Manfred

This post is deleted!

Manfred

Hi Richard,

@darootler said in Incident: Parameter "USE_CUSTOM_REMOTE_IP_HEADER" not working:

Hi,

the value “X_FORWARDED_FOR” is working as expected. Is this wanted? Didn’t match the description:

// Use a custom header to determinate the remote IP of a client.
// By default, the server provided REMOTE_ADDR is used. If the header here set
// is available, the provided value will be used, else REMOTE_ADDR is maintained.
// set to false to disable this behaviour.
// common values: 'HTTP_X_FORWARDED_FOR', 'HTTP_X_REAL_IP' (casing is ignored)

Regards
Richard

The description says “common values”, but it doesn’t mean that only these values are possible. It also depends if you’re using modphp or php-fpm, which webserver etc. Therefore USE_CUSTOM_REMOTE_IP_HEADER is configurable so that it can be changed to match one’s needs.

X_FORWARDED_FOR is also a common header: https://en.wikipedia.org/wiki/X-Forwarded-For

Manfred

darootler

Okay, thank you for your help.

Regards
Richard