This repository has been archived by the owner on Jan 28, 2022. It is now read-only.
forked from cloudflarearchive/Cloudflare-Tools
-
Notifications
You must be signed in to change notification settings - Fork 0
libapache2-mod-cloudflare ...
tuxsoul/libapache2-mod-cloudflare
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Folders and files
Name | Name | Last commit message | Last commit date | |
---|---|---|---|---|
Repository files navigation
Based on mod_remoteip.c, this apache extension will replace the remote_ip variable in user's logs with the correct remote_ip sent from CloudFlare. This also does authentication, only performing the switch for requests originating from 204.93.173.0/24 (by default). To install: # apxs2 -a -i -c mod_cloudflare.c No further configuration is needed. However, if you wish to override the default values, the following directives are exposed: * CloudFlareRemoteIPHeader This specifies the header which contains the original IP. Default: CloudFlareRemoteIPHeader CF-Connecting-IP * CloudFlareRemoteIPTrustedProxy This is the IP range from which we will allow the CloudFlareRemoteIPHeader to be used from. Default: CloudFlareRemoteIPTrustedProxy 66.225.125.0/24 CloudFlareRemoteIPTrustedProxy 204.93.240.0/24 CloudFlareRemoteIPTrustedProxy 204.93.177.0/24 CloudFlareRemoteIPTrustedProxy 204.93.173.0/24 CloudFlareRemoteIPTrustedProxy 199.27.128.0/21 Note that on some Debian systems, you may have to add a LoadModule directive manually. This should look like: LoadModule cloudflare_module /usr/lib/apache2/modules/mod_cloudflare.so Replace /usr/lib/apache2/modules/mod_cloudflare.so with the path to \ mod_cloudflare.so on your system. If you cannot find apxs or apxs2, on a Debian or Ubuntu distro you can install this tool with: # apt-get install apache2-prefork-dev NOTES: *) If mod_cloudflare and mod_remoteip are enabled on the same web server, the server will crash if they both try to set the remote IP to a different value. *) Enableing mod_cloudflare will not effect the performance of Apache in any noticable maner. AB testing both over LAN and WAN show no equalilent numbers with and without mod_cloudflare. *) If you like, you may also add the directive DenyAllButCloudFlare. This will result in all requests from IPs which are not in the CloudFlareRemoteIPTrustedProxy range being denied with a status of 403.
About
libapache2-mod-cloudflare ...
Topics
Resources
Stars
Watchers
Forks
Languages
- C 100.0%