Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

apache ProxyPass: how to preserve original IP address

Tags:

redirect

apache

proxypass

We are using ProxyPass to redirect all "/r" requests to jboss on port 18080 as follows:

ProxyPreserveHost on ProxyPass /r http://localhost:18080/redirectService/ ProxyPassReverse /r http://localhost:18080/redirectService/

But, that causes the IP address logged in jboss's access log as "127.0.0.1". Does somebody know how can we preserve the original IP from where the request came in HttpServletRequest? We want to acesss it from jboss servlet request in doGet()

like image 299
ashweta Avatar asked Apr 17 '09 12:04

ashweta

People also ask

What is proxy preserve host?

The ProxyPreserveHost directive is used to instruct Apache mod_proxy, when acting as a reverse proxy, to preserve and retain the original Host: header from the client browser when constructing the proxied request to send to the target server.

What is ProxyPass and proxy pass reverse?

ProxyPassReverse will intercept those headers, and rewrite them to match the Apache proxy server. ProxyPass will create a reverse proxy. A reverse proxy (or gateway), appears to the client just like an ordinary web server. The client makes ordinary requests for content in the namespace of the reverse proxy.

What is the default proxy timeout in Apache?

Apache Default timeout is set to 300 seconds.

2 Answers

You can get the original host from X-Forwarded-For header field.

like image 148
andri Avatar answered Oct 06 '22 19:10

andri

The answer of JasonW is fine. But since apache httpd 2.4.6 there is a alternative: mod_remoteip

All what you must do is:

  1. May be you must install the mod_remoteip package

  2. Enable the module:

    LoadModule remoteip_module modules/mod_remoteip.so

  3. Add the following to your apache httpd config. Note that you must add this line not into the configuration of the proxy server. You must add this to the configuration of the proxy target httpd server (the server behind the proxy):

    RemoteIPHeader X-Forwarded-For # replace IP with the remote server you trust RemoteIPInternalProxy 10.123.123.1/24

See at http://httpd.apache.org/docs/trunk/mod/mod_remoteip.html for more information and more options.

Security warning! Only do this for proxies you trust. Otherwise someone can fake their IP.

like image 43
Steffen Avatar answered Oct 06 '22 18:10

Steffen
Sign in to Comment

Related questions

XAMPP 1.8.2-2 Apache Web Server won't start, always stops immediately
Apache Name Virtual Host with SSL
mod_rewrite rule to redirect all requests except for one specific path
500 Error without anything in the apache logs
Using PHP/Apache to restrict access to static files (html, css, img, etc)
Setting up an Apache Proxy with Authentication
Apache default VirtualHost
Virtual host on ubuntu 13.10 and apache 2.4.6
How can I disable mod_security in .htaccess file?
socket: Too many open files (24) apache bench lighttpd
What is .htaccess file?
Enable PHP Apache2
Apache 13 permission denied in user's home directory [closed]
Installing mcrypt extension for PHP on OSX Mountain Lion
Vagrant chicken-and-egg: Shared folder with uid = apache user
How do I set expiration on CSS, JS and Images?
Do you know any reason to use Apache instead of Nginx? [closed]
Online Based Apache Web Log Analyzer By Submitting Just the Raw Logfile [closed]
installing apache: no VCRUNTIME140.dll
How can I let a user download multiple files when a button is clicked?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!