Hello, if it's 443 and so https or even http, zen is adding an item in http header with real ip X-Forwarded-For I use it successfuly for my web server to log real remote ip.
Cordialement, Mathieu CHATEAU http://www.lotp.fr 2015-06-15 22:04 GMT+02:00 VELARTIS Philipp Dürhammer < p.duerham...@velartis.at>: > Oops mistake! > > > > *Von:* VELARTIS Philipp Dürhammer [mailto:p.duerham...@velartis.at] > *Gesendet:* Montag, 15. Juni 2015 21:59 > *An:* 'zenloadbalancer-support@lists.sourceforge.net' > > *Betreff:* Re: [Zenloadbalancer-support] Logging IP addresses on > connections from the internet. > > > > Hi, > > > > the problem ist he tcp profile wich uses PEN. > > The 443 not the smtp. > > > > > > *Von:* Mathieu Chateau [mailto:mathieu.chat...@lotp.fr > <mathieu.chat...@lotp.fr>] > *Gesendet:* Montag, 15. Juni 2015 21:32 > *An:* zenloadbalancer-support > *Betreff:* Re: [Zenloadbalancer-support] Logging IP addresses on > connections from the internet. > > > > Hello, > > > > I guess it's incoming smtp, else your wouldn't see any relay attempt. > > > > Using L4xnat should make your server receiving real remote ip address. > Then it must use zen as a gateway for reply. > > > > For SMTP, except if you only have 1 ip address, I do not see big benefits, > as MX are already meant to survive smtp server failure in the whole > internet. > > > > Tcpdump wouldn't be useful as you need the true IP in realtime to block > smtp connection and not accept it at all. Also needed for grey listing. > > > > > > > Cordialement, > Mathieu CHATEAU > http://www.lotp.fr > > > > 2015-06-15 16:44 GMT+02:00 Emilio Campos <emilio.campos.mar...@gmail.com>: > > You can use tcpdump in the load balancer in order to obtain the origin > IP. > > > > > > > > 2015-06-12 22:54 GMT+02:00 Ernie Dunbar <maill...@lightspeed.ca>: > > Hi everyone. > > We're using the community edition of Zen Loadbalancer, and I've noticed > a problem with logging incoming connections. Namely, that it doesn't > exist. We've only set up POP and outgoing SMTP as a load balanced > service so far, but as a result of that our logs are now filling up with > a lot of SMTP relay attempts. Setting up Fail2Ban on the loadbalancer > would be pretty easy, if only we had any idea where these connections > were coming from, but they're not showing up in any of the logs. Is > there some setting that can turn this logging on? > > > ------------------------------------------------------------------------------ > _______________________________________________ > Zenloadbalancer-support mailing list > Zenloadbalancer-support@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support > > > > > > -- > > Load balancer distribution - Open Source Project > http://www.zenloadbalancer.com > Distribution list (subscribe): > zenloadbalancer-support@lists.sourceforge.net > > > > ------------------------------------------------------------------------------ > > _______________________________________________ > Zenloadbalancer-support mailing list > Zenloadbalancer-support@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support > > > > > -- > ✓ Geprüft von IKARUS anti.virus > http://www.ikarussecurity.com > > > -- > ✓ Geprüft von IKARUS anti.virus > http://www.ikarussecurity.com > > > ------------------------------------------------------------------------------ > > _______________________________________________ > Zenloadbalancer-support mailing list > Zenloadbalancer-support@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support > >
------------------------------------------------------------------------------
_______________________________________________ Zenloadbalancer-support mailing list Zenloadbalancer-support@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/zenloadbalancer-support
