Pass the remote IP to the proxied application (#1298)

2026-04-09 01:58:45 +00:00 · 2025-11-20 17:32:15 +01:00
parent 02989f03d0
commit 18d2b4ffff
2 changed files with 6 additions and 0 deletions
--- a/.github/actions/spelling/expect.txt
+++ b/.github/actions/spelling/expect.txt
@@ -276,6 +276,7 @@ redhat
 redir
 redirectscheme
 refactors
+remoteip
 reputational
 risc
 ruleset
--- a/docs/docs/admin/environments/apache.mdx
+++ b/docs/docs/admin/environments/apache.mdx
@@ -92,6 +92,11 @@ Assuming you are protecting `anubistest.techaro.lol`, you need the following ser
       DocumentRoot /var/www/anubistest.techaro.lol
       ErrorLog /var/log/httpd/anubistest.techaro.lol_error.log
       CustomLog /var/log/httpd/anubistest.techaro.lol_access.log combined
+
+       # Pass the remote IP to the proxied application instead of 127.0.0.1
+       # This requires mod_remoteip
+       RemoteIPHeader X-Real-IP
+       RemoteIPTrustedProxy 127.0.0.1/32
 </VirtualHost>
 ```