Tag apache

Restoring visitors IP with mod_remoteip

Tags: , , ,

Using EasyApache, install Apache Mod_RemoteIP ( ea-apache24-mod_remoteip ).

Edit the conf file : nano /etc/apache2/conf.modules.d/370_mod_remoteip.conf

RemoteIPHeader CF-Connecting-IP
RemoteIPTrustedProxy 103.21.244.0/22
RemoteIPTrustedProxy 103.22.200.0/22
RemoteIPTrustedProxy 103.31.4.0/22
RemoteIPTrustedProxy 104.16.0.0/13
RemoteIPTrustedProxy 104.24.0.0/14
RemoteIPTrustedProxy 108.162.192.0/18
RemoteIPTrustedProxy 131.0.72.0/22
RemoteIPTrustedProxy 141.101.64.0/18
RemoteIPTrustedProxy 162.158.0.0/15
RemoteIPTrustedProxy 172.64.0.0/13
RemoteIPTrustedProxy 173.245.48.0/20
RemoteIPTrustedProxy 188.114.96.0/20
RemoteIPTrustedProxy 190.93.240.0/20
RemoteIPTrustedProxy 197.234.240.0/22
RemoteIPTrustedProxy 198.41.128.0/17
RemoteIPTrustedProxy 2400:cb00::/32
RemoteIPTrustedProxy 2606:4700::/32
RemoteIPTrustedProxy 2803:f800::/32
RemoteIPTrustedProxy 2405:b500::/32
RemoteIPTrustedProxy 2405:8100::/32
RemoteIPTrustedProxy 2a06:98c0::/29
RemoteIPTrustedProxy 2c0f:f248::/32

Once that has been done, you’ll need to go to WHM :
Home » Service Configuration » Apache Configuration » Global Configuration

And modify both of the LogFormat (combined, and common) by replace the “h” with an “a”.

%h %l %u %t \”%r\” %>s %b \”%{Referer}i\” \”%{User-Agent}i\”

This format captures the header with the %h field which is the proxy address in our example. Because we want the originating client IP address instead of the remote IP being logged, we replace this with an %a.

“%a %l %u %t \”%r\” %>s %O \”%{Referer}i\ \”%{User-Agent}i\”

Save and restart Apache and that should handle this.