Get forwarded IP after Caddy 2.4.6. #15
Comments
|
Interesting. Thank you for the heads-up. I think a solution would involve using the changes that are being worked on as discussed in this issue: caddyserver/caddy#4924. I'll have to check it out to see if changes are required for this bouncer. |
|
Caddy v2.6.3 has been released adding a global trusted_proxies option - caddyserver/caddy#5103 Does this addition help at all with this issue? |
|
Caddy 2.7.0-beta1 introduced |
|
@dd310 thank you 🙂 I've started a PR to upgrade the dependencies. Will need to do some testing with the new Caddy beta. If things look good, I can cut a new release. After that I'll upgrade other dependencies too for yet another release. |
|
Thank you for your time! I noticed caddy 2.7 beta 2 is out, and I guess the next release will be stable. |
|
Looks like Caddy 2.7 stable is out now, any updates on this? |
|
@JackBailey you're right! 🙂 I've been working on the PR and updating it several times, because there were some last-minute breaking issues in Caddy. But on v2.7.3 things are looking OK: #18. I intend to release this very soon now. Need to find a bit of time, because I have some follow-up wants/wishes and also want to find out what's the best way to go about the "real client IP": would it only be some configuration, or will code changes be required; or maybe both? This issue will likely help me do the right thing 🙂 |
|
Hey, I saw there is a new release, does it already include the additional changes to use the real IP of clients when the proxy is behind Cloudflare? Thank you! |
It looks like Trying to use Crowdsec with Caddy 2.7 gives me the error in #17, not sure if that's because of Caddy 2.7 or not, but looks like an issue trying to retrieve api_url from the config. |
|
With Caddy 2.7, I can also see the real ip in the |
|
I can also confirm that caddy 2.7.3 will return |
|
I still need to take a look at the |
|
Thank you for the great work! |
|
The release is out: https://github.com/hslatman/caddy-crowdsec-bouncer/releases/tag/v0.3.1. I've tested it locally only, but the results look OK 🙂 @JackBailey do you still have that issue with the API URL? I don't think it's related to the Caddy version, as mine parsed fine, but then again, I'm usually testing with a local @iurab did you test it with a proxy in front, or without? Without a proxy it should still have worked on the old release, but it depends on whether you use the streaming bouncer or the live bouncer. The streaming bouncer will poll every X period of time, based on the ticker interval. The live bouncer will perform a look up every HTTP request. If you're using the streaming bouncer (the default), the decision may not have been received by the bouncer yet. The streaming bouncer is technically not really a streaming bouncer, but it's the name the CrowdSec team gave to the Go package I'm using in this bouncer. |
|
Just for the sake of clarity, I think it may be helpful to include in the readme that |
realip doesn't work after Caddy 2.4.6.
How should retrieving remote ips be done behind a proxy after Caddy 2.4.6?
The text was updated successfully, but these errors were encountered: