Real IP when tunneling SSH through Access

I’m pretty happy with my experiment to set up SSH tunneling via Access, but one thing bugs me:

Last login: Tue Feb  1 01:01:40 2022 from ::1

How could I go about making the SSH server aware of the real client IP, for logging purposes?

Unfortunately, I don’t see a way for this to be possible. SSH doesn’t send headers like HTTP does, so there’s no way for Cloudflare to pass that along.

I suppose one option would be to set up an Access “Allow” policy.

1 Like

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.