IP address detection / Traefik config #29

Open
opened 8 months ago by nickdickinson · 4 comments

I have been using the Wordfence plugin for security and to blacklist known malicious IPs. Unfortunately, since moving to Abra, the plugin does not detect anymore the IP of visitors and rather detects the internal network IP from docker I assume. Since then I've been getting a lot of spam and the blacklist does not work obviously.

Here is a screenshot of the various options for IP detection, all of which do not work. Basically, it comes down to (I imagine) configuration of the proxy/Traefik I guess to ensure that X-Forwarded-For is correctly set. Has anyone else run into this problem? Any ideas which configuration needs to be adjusted? I googled around but realized I don't yet know enough about Traefik / abra to do this on my own yet and I wonder if anyone else has also faced this.

image

I have been using the Wordfence plugin for security and to blacklist known malicious IPs. Unfortunately, since moving to Abra, the plugin does not detect anymore the IP of visitors and rather detects the internal network IP from docker I assume. Since then I've been getting a lot of spam and the blacklist does not work obviously. Here is a screenshot of the various options for IP detection, all of which do not work. Basically, it comes down to (I imagine) configuration of the proxy/Traefik I guess to ensure that X-Forwarded-For is correctly set. Has anyone else run into this problem? Any ideas which configuration needs to be adjusted? I googled around but realized I don't yet know enough about Traefik / abra to do this on my own yet and I wonder if anyone else has also faced this. ![image](/attachments/b734af61-78ce-48e5-ac4e-56257b2007a4)
https://wordpress.org/support/article/administration-over-ssl/#using-a-reverse-proxy 😱
https://github.com/docker-library/wordpress/issues/383 😱

docker run -it --entrypoint="" wordpress:latest cat /etc/apache2/apache2.conf

😱

`docker run -it --entrypoint="" wordpress:latest cat /etc/apache2/apache2.conf` 😱

Random braindump for this fix is:

  • figure out how to config apache2.conf to pass ips
  • add a compose.forwardip.yml with an additional apache2.conf.tmpl
Random braindump for this fix is: - figure out how to config `apache2.conf` to pass ips - add a `compose.forwardip.yml` with an additional `apache2.conf.tmpl`
Sign in to join this conversation.
No Label
No Milestone
No Assignees
2 Participants
Notifications
Due Date

No due date set.

Dependencies

No dependencies set.

Reference: coop-cloud/wordpress#29
Loading…
There is no content yet.