Home › Forums › BulletProof Security Pro › login security ip address problem(shown as localhost)
- This topic has 7 replies, 2 voices, and was last updated 5 years, 8 months ago by
AITpro Admin.
-
AuthorPosts
-
Ash F
ParticipantLogin security shows all login user as localhost(127.0.0.0)
How do I fix this?
AITpro Admin
KeymasterSounds like you are using a Proxy/Reverse Proxy server and it is not configured correctly. Go to the BPS System Info page and copy and paste this information: Note: use x’s to hide your ISP IP address. 😉
Server|Website IP Address: 173.201.92.22
Host by Address: ip-173-201-92-22.ip.secureserver.net
DNS Name Server: ns26.domaincontrol.com
Public Internet IP Address (ISP): xxx.xxx.xxx.xxx
Server Type: Apache
Operating System: Linux
WP Filesystem API Method: direct
Server API: cgi-fcgi CGI Host Server Type
Apache Modules|Directives|Backward Compatibility(Yes|No)|IfModule(Yes|No): View Visual Test
403: mod_access_compat is Loaded|Order, Allow, Deny directives are supported|IfModule: Yes
403: mod_authz_core is Loaded|Order, Allow, Deny directives are supported|BC: Yes|IfModule: Yes
403: mod_authz_host is Loaded|Order, Allow, Deny directives are supported|BC: Yes|IfModule: Yes
200: mod_rewrite Module is LoadedAsh F
Participantyeah, I see proxy info. Is this because of our server is using Nginx and Varnish?
Server|Website IP Address: 127.0.0.1
Host by Address: localhost
DNS Name Server: ns41.domaincontrol.com
Proxy X-Forwarded-For IP Address: ***.***.***.***, 127.0.0.1
Server Type: Apache/2.4.10 (Debian)
Operating System: Linux
WP Filesystem API Method: direct
Server API: fpm-fcgi CGI Host Server Type
Apache Modules|Directives|Backward Compatibility(Yes|No)|IfModule(Yes|No):
200: mod_access_compat is Loaded
200: mod_rewrite Module is LoadedAITpro Admin
KeymasterYep, definitely a Proxy configuration problem. 😉 Typically you should only see 1 IP address here: Proxy X-Forwarded-For IP Address and I see 2 IP addresses. Note: It is fine to have several IP address as long as they use this format: X-Forwarded-For: <client>, <proxy1>, <proxy2>. This is outside of the support we offer for the BPS Pro plugin. So at least you know what/where the problem is and will need to work with your host support folks to figure out the Proxy config problem.
Ash F
ParticipantThank you.
That was caused by server’s security related setting.
adding this to wp-config solved the problem.$_SERVER['REMOTE_ADDR'] =$_SERVER['HTTP_X_REAL_IP'];
AITpro Admin
KeymasterGreat! Glad you got it figured out.
Ash F
ParticipantI received updated code from tech support
if(isset($_SERVER['HTTP_X_FORWARDED_FOR'])){ $xffaddrs = explode(',',$_SERVER['HTTP_X_FORWARDED_FOR']); $_SERVER['REMOTE_ADDR'] = $xffaddrs[0]; }
AITpro Admin
KeymasterCool! Thanks for sharing this solution. ie in case someone else runs into this same problem. 😉
-
AuthorPosts
- You must be logged in to reply to this topic.