http headers ip address

Igor Sysoev is at
Tue Apr 21 14:43:55 MSD 2009

On Sun, Apr 19, 2009 at 09:48:54AM -0700, Michael Shadle wrote:

> make sure nginx has the "realip" module (nginx -V, look for
> --with-http_realip_module) - you could try it and run nginx -t to
> check the conf file to see if it's in your compile too.
> Double check the header isn't a different case like
> X-FB-User-Remote-Addr or something (if you saw this in PHP it would be
> capitalized, but also prefixed with SERVER so maybe it is always
> capped)
> Lastly this is all you need. The first line is if you want to only
> trust that header from another proxy / load balancer / etc, which you
> probably do, so you can set it to the appropriate netmask.
> set_real_ip_from;

No, you should not allow to override client address from all.
Just from frontends:

set_real_ip_from fb-ip1;
set_real_ip_from fb-ip2;

> real_ip_header X-FB-USER-REMOTE-ADDR;
> On Sun, Apr 19, 2009 at 9:16 AM, rkmr.em at <rkmr.em at> wrote:
> > hi
> > i get the clients ip address in this http header: X-FB-USER-REMOTE-ADDR. how
> > do i configure nginx so that this is set as the ip address of client for a
> > fastcgi app?
> >
> > thanks a lot!
> >
> >

Igor Sysoev

More information about the nginx mailing list