Hi,
On Fri, Oct 6, 2017 at 8:49 AM, Morel Mosolff wrote:
> Hi Yann
> unfortunately that makes no difference.
>
> It don't works even if I only try to block one ip-address like this: SetEnvIf
> Remote_Addr "1\.2\.3\.1" wav
> but the output is slighly different (see below)
>
> LogFormat "%
HEAD / HTTP/1.0" 301 - "-" "-"
if I delete %h in the proxy definition I get:
10.1.2.2 - - [06/Oct/2017:08:45:23 +0200] "HEAD / HTTP/1.0" 301 - "-" "-"
- - - [06/Oct/2017:08:45:23 +0200] "HEAD / HTTP/1.0" 301 - "-" "-"
10
Hi,
On Thu, Oct 5, 2017 at 11:11 AM, Morel Mosolff wrote:
>
> #part 2:
> SetEnvIf Remote_addr ("1\.2\.3\.1"|"1\.2\.2\.2") waf
> CustomLog "logs/ssl_access_log" proxy env=!waf
Did you try without the quotes, for instance:
SetEnvIf Remote_addr ^(1\.2\.3\.1|1\.2\.2\.2)$
Hello together
I'm a little bit confused about manipulation ssl_access_log to get the
X-Forward-For IP but not the "WAF/Proxy" IP.
(sorry for that long text...)
# Settings:
rhel 7.3
apache 2.4.6
Redirect: apache redirect (nearly) everthing to https
- Apache is behind a Web Application Firewall
