Hi, I'd like to be able to track the original IP making requests, not the cloudflare IP. How can I do that? It appears both mod_remoteip and mod_cloudflare are extremely old, and mod_cloudflare is apparently deprecated altogether.
Only thing I had to do was enable the mod_remoteip module and add their known IP ranges to the config (I hope this is still current, you might find an updated list on their site):
# CloudFlare Header
RemoteIPHeader CF-Connecting-IP
# CloudFlare IPv4 Address Ranges
RemoteIPTrustedProxy 103.21.244.0/22
RemoteIPTrustedProxy 103.22.200.0/22
RemoteIPTrustedProxy 103.31.4.0/22
RemoteIPTrustedProxy 104.16.0.0/13
RemoteIPTrustedProxy 104.24.0.0/14
RemoteIPTrustedProxy 108.162.192.0/18
RemoteIPTrustedProxy 141.101.64.0/18
RemoteIPTrustedProxy 162.158.0.0/15
RemoteIPTrustedProxy 172.64.0.0/13
RemoteIPTrustedProxy 173.245.48.0/20
RemoteIPTrustedProxy 188.114.96.0/20
RemoteIPTrustedProxy 190.93.240.0/20
RemoteIPTrustedProxy 197.234.240.0/22
RemoteIPTrustedProxy 198.41.128.0/17
RemoteIPTrustedProxy 199.27.128.0/21
# CloudFlare IPv6 Address Ranges
RemoteIPTrustedProxy 2400:cb00::/32
RemoteIPTrustedProxy 2405:8100::/32
RemoteIPTrustedProxy 2405:b500::/32
RemoteIPTrustedProxy 2606:4700::/32
RemoteIPTrustedProxy 2803:f800::/32
RemoteIPTrustedProxy 2a06:98c0::/29
RemoteIPTrustedProxy 2c0f:f248::/32
This just worked, the logs and apps now see the original address.
Kind regards,
Walter Hop
Does it require rebuilding apache with the mod_remoteip source, as seems to be indicated, and would code from 10 years ago even compile with the current apache?
Is there a pre-existing package or module available for fedora? Other ideas for doing this? Cloudflare also provides some php code to be added to the <body> tag, but it doesn't actually update the access log with this info.
Thanks,
Dave
--
Dave Wreski
President & CEOGuardian Digital, Inc.We Make Email Safe
640-800-9446
dwreski@xxxxxxxxxxxxxxxxxxx
https://guardiandigital.com
103 Godwin Ave, Suite 314, Midland Park, NJ 07432
