From 18d2b4ffff527665a197ee5e3ddd721b7bf8a63b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Lukas=20D=C3=BCrrenberger?= Date: Thu, 20 Nov 2025 17:32:15 +0100 Subject: [PATCH] Pass the remote IP to the proxied application (#1298) --- .github/actions/spelling/expect.txt | 1 + docs/docs/admin/environments/apache.mdx | 5 +++++ 2 files changed, 6 insertions(+) diff --git a/.github/actions/spelling/expect.txt b/.github/actions/spelling/expect.txt index 145e53c..b03c964 100644 --- a/.github/actions/spelling/expect.txt +++ b/.github/actions/spelling/expect.txt @@ -276,6 +276,7 @@ redhat redir redirectscheme refactors +remoteip reputational risc ruleset diff --git a/docs/docs/admin/environments/apache.mdx b/docs/docs/admin/environments/apache.mdx index 6aa6d0d..75930af 100644 --- a/docs/docs/admin/environments/apache.mdx +++ b/docs/docs/admin/environments/apache.mdx @@ -92,6 +92,11 @@ Assuming you are protecting `anubistest.techaro.lol`, you need the following ser DocumentRoot /var/www/anubistest.techaro.lol ErrorLog /var/log/httpd/anubistest.techaro.lol_error.log CustomLog /var/log/httpd/anubistest.techaro.lol_access.log combined + + # Pass the remote IP to the proxied application instead of 127.0.0.1 + # This requires mod_remoteip + RemoteIPHeader X-Real-IP + RemoteIPTrustedProxy 127.0.0.1/32 ```