Not showing all real IP's

I need to be able to see the actual IP in my site. I asked my host to install mod_remoteip. The result was that some IP’s showed as the actual IP but some showed as IPv6, even though they were IPv4. Since the site can’t handle v6 IP’s, the IP was recorded as blank and that caused all sorts of problems on the site. I have paused CF now since it is no longer usable. I asked my host to doublecheck that the module was installed correctly based on a thread I found here. They checked it and provided the details below.

This is a linux server running CloudLinux, in case that matters. Any idea what might be the problem?

For your reference and your post here is the configuration we used after installing mod_remoteip

<IfModule !mod_remoteip.c>
LoadModule remoteip_module modules/mod_remoteip.so

# CloudFlare Header RemoteIPHeader CF-Connecting-IP

Trusted Proxy List

note - using RemoteIPTrustedProxy instead of RemoteIPInternalProxy

note - RemoteIPTrustedProxy does NOT trust Header provided private intranet addresses (local and LAN addresses)

note - RemoteIPInternalProxy is a security risk when using an external Proxy

CloudFlare IPv4 Address Ranges

RemoteIPTrustedProxy 173.245.48.0/20
RemoteIPTrustedProxy 103.21.244.0/22
RemoteIPTrustedProxy 103.22.200.0/22
RemoteIPTrustedProxy 103.31.4.0/22
RemoteIPTrustedProxy 141.101.64.0/18
RemoteIPTrustedProxy 108.162.192.0/18
RemoteIPTrustedProxy 190.93.240.0/20
RemoteIPTrustedProxy 188.114.96.0/20
RemoteIPTrustedProxy 197.234.240.0/22
RemoteIPTrustedProxy 198.41.128.0/17
RemoteIPTrustedProxy 162.158.0.0/15
RemoteIPTrustedProxy 104.16.0.0/12
RemoteIPTrustedProxy 172.64.0.0/13
RemoteIPTrustedProxy 131.0.72.0/22

CloudFlare IPv6 Address Ranges

RemoteIPTrustedProxy 2400:cb00::/32
RemoteIPTrustedProxy 2606:4700::/32
RemoteIPTrustedProxy 2803:f800::/32
RemoteIPTrustedProxy 2405:b500::/32
RemoteIPTrustedProxy 2405:8100::/32
RemoteIPTrustedProxy 2a06:98c0::/29
RemoteIPTrustedProxy 2c0f:f248::/32

Then while in the Apache Configuration changed the combined log format to be:

%a %l %u %t “%r” %>s %b “%{Referer}i” “%{User-Agent}i”

The addresses that showed as IPv6 were from users with an IPv6 address.

mod_remoteip is recording the IPv6 address according to what you said, so you probably want to look at why the site itself can’t handle an IPv6 address.

With CF paused, all IP’s are reported as v4. Both versions are sent by the ISP but CF is selecting the v6 by default. The server uses cpanel which, I think, can’t handle v6 IP’s. But even if it can, the sites programs can’t. I need to CF to report the actual v4 IP. Is that possible?

This topic was automatically closed 5 days after the last reply. New replies are no longer allowed.