We are testing our new Cloudflare Access setup and wondering why we’re seeing our own personal IP addresses in the nginx ingress logs when hitting the site. When I hit the site I authenticate via our Azure AD connection which works, then it forwards me on to the site where I get a 403. I get a 403 because we used an nginx ingress whitelist that includes all the Cloudflare IP CIDR blocks and it’s blocking me because (in the logs) it sees that I’m coming from my personal IP address, not Cloudflare’s range. Why is this happening? Shouldn’t I be tunneled through Cloudflare?
7 posts were merged into an existing topic: Nginx Ingress Whitelisting Doesn’t Work With Proxy Enabled