[BUG] Issue with Real IP when using Cloudflared Tunnel and a Proxy Service

Question

[BUG] Issue with Real IP when using Cloudflared Tunnel and a Proxy Service

NoobOfAll opened this issue 4 months ago · 3 comments

NoobOfAll commented 4 months ago

Is there an existing issue for this?

I have searched the existing issues

Current Behavior

The reported IP shows either the internal Proxy IP as the access IP or the Tunnel IP as the access IP

Expected Behavior

The final User IP should be visible

Steps To Reproduce

Use cloudlfared Tunnel to connect to a Reverse Proxy which sends the connection to Nextcloud

Environment

- OS:
- How docker service was installed:

CPU architecture

x86-64

Docker creation

Regular setup, nothing complicated

Container logs

Not really Needed, just checking the access log works, since I have solved the issue, logs wont help anymore, but not confident with my solution, I am submitting a bug with my solution, so that if it makes sense, you can make the update

Answer 1 · 2024-09-13T04:39:15.000Z

Thanks for opening your first issue here! Be sure to follow the relevant issue templates, or risk having this issue marked as invalid.

Answer 2 · 2024-09-13T04:41:13.000Z

MY Solution

NGINX Site conf

Nextcloud/config/nginx/site-confs/default.conf

    # display real ip in nginx logs when connected through reverse proxy via docker network
    set_real_ip_from 172.28.1.24;
    set_real_ip_from 192.168.0.10;    
    real_ip_header X-Forwarded-For;
    real_ip_recursive on;

The last line is needed for multiple IPs to be considered as internal IPs

Answer 3 · 2024-10-04T17:23:17.000Z

OP wrote their solution which will suffice, but i will note that putting our containers through cf tunnels, vpns, or proxy services are out of scope for us. Presumably you need the cloudflare real ip mod.. Closing this as out of scope for support.