Apache : log real IP addresses behind a reverse proxy

Jan 10, 2022 by Thibault Debatty | 7100 views

Kubernetes

https://cylab.be/blog/194/apache-log-real-ip-addresses-behind-a-reverse-proxy

It's quite common now to run your web application behind a reverse proxy or a loadbalancer. This is typically the case if you are running your application in a Kubernetes cluster. In this case, the IP address that is logged by Apache is the IP of the proxy server, which is quite misleading and useless. To get Apache to log the real IP address of the clients, you will have to enable and configure the module remoteip.

christopher-gower-m_HRfLhgABo-unsplash.jpg

Enable the remoteip module:

sudo a2enmod remoteip

Add the following configuration to /etc/apache2/conf-available/remoteip.conf:

#
# /etc/apache2/conf-available/remoteip.conf
# https://cylab.be/blog/194/fix-apache-logs-behind-a-reverse-proxy
#

RemoteIPHeader X-Forwarded-For
RemoteIPTrustedProxy <ip.of.proxy>

Obviously, you must replace <ip.of.proxy> by the actual IP of the proxy server, or by a subnet (like 192.168.0.0/24). If you have multiple IP addresses, you can list them...

And enable the configuration with:

sudo a2enconf remoteip

Finally, restart the Apache server:

sudo service apache2 restart

Done!

This blog post is licensed under CC BY-SA 4.0

Install Kubernetes on Ubuntu 22.04 with MicroK8s
Kubernetes is a complex beast, with lots of available drivers and plugins to handle different types of clusters. For example, to handle networking between pods in the cluster, you must install a CNI (Container Network Interface) plugin like Flannel, Calico, Weave Net, Cilium or other. To handle storage and volumes, you can install one of multiple CSI (Container Storage Interface) plugins like CephFS, GlusterFS, Google Cloud Storage etc. In this blog post we show how to use MicroK8s to simplify the installation process.
Dec 6, 2022 | 3903 views
Deploy Loki on Kubernetes, and monitor the logs of your pods
Loki is a log database developed by Grafana Labs. In a previous blog post we have shown how to run Loki with docker-compose. In this blog post we will deploy Loki on a Kubernetes cluster, and we will use it to monitor the log of our pods.
Jan 20, 2022 | 26280 views
Getting started with Helm
Helm is a template engine that can be used to deploy applications on a Kubernetes cluster. It allows to build a customized kubernetes resources definition, that can be deployed on your cluster. But helm has actually many other functionalities, to handle the whole process of building, distributing, installing and managing Kubernetes applications.
Jan 15, 2022 | 3062 views
This website uses cookies. More information about the use of cookies is available in the cookies policy.
Accept