https://issues.apache.org/bugzilla/show_bug.cgi?id=55637
William A. Rowe Jr. <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |RESOLVED Resolution|--- |INVALID --- Comment #2 from William A. Rowe Jr. <[email protected]> --- "I expected, that mod_remoteip would override client IP with 1.1.1.1 because 87.250.250.203 is trusted and 127.0.0.1 is internal trusted." That would not happen on the fact that it's logically inconsistent. Once you have left the domain of InternalProxy processing, and moved on to TrustedProxy processing, it will still never let you return to Internal processing because of the fact that you have left those machines within your control and are now trusting machines outside of the realm of your control. Secondly, 87.250.250.203 is not an InternalProxy under your trust domain for intranet addresses, so it is not allowed to point the apparent origin IP of this request towards an intranet address, only towards an extranet address. Therefore, the X-F-F value presented by 87.250.250.203 is invalid and the origin IP address of this request is stuck at the offending proxy, rather than following the chain further into the list of X-F-F values. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
