Ad Widget

Collapse

Zabbix audit shows reverse proxy IP-address!

Collapse
This topic has been answered.
X
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • ZabbixSeeker
    Junior Member
    • Mar 2026
    • 14
    #1

    Zabbix audit shows reverse proxy IP-address!

    Failed logins etc, in the audit, all logs the reverse proxy IP address.
    I am using zabbix web docker.

    I've only seen multiple bug reports and unsupported unstable hacks. Is there an officially supported way to log the correct IP address?

    My reverse proxy provides the real IP address via headers "X-Forwarded-For" and "X-Real-Ip".
    Tags: None
    • Answer selected by ZabbixSeeker at Yesterday, 23:58.
      ZabbixSeeker
      Junior Member
      • Mar 2026
      • 14
      Okay, so I reverse engineered the whole shebang.
      .. unsupported yet documented. Supported since X version though.

      There you have it. GL whoever's reading this forum post as documentation.
        • Selected Answer

        Comment

        • ZabbixSeeker
          Junior Member
          • Mar 2026
          • 14
          #2
          Got a hint.
          These ENV-vars can be used.

          WEB_REAL_IP_FROM=
          WEB_REAL_IP_HEADER=
          Last edited by ZabbixSeeker; Yesterday, 19:42.

            Comment

            • ZabbixSeeker
              Junior Member
              • Mar 2026
              • 14
              #3
              Nope. Horrific documentation, sorry.
              setting WEB_REAL_IP_FROM to 0.0.0.0/0 or the actual source ip (of the proxy) and setting WEB_REAL_IP_HEADER to the exact header providing the real ip, does nothing.

              I am TCP-dumping the traffic and zabbix ignores it all. I am rebuilding the image and everything.

                Comment

                • ZabbixSeeker
                  Junior Member
                  • Mar 2026
                  • 14
                  #4
                  docker inspect and tcp dumping the traffic.. everything is set up right, and I've tried all kinds of variations of setups that should work ..

                    Comment

                    • ZabbixSeeker
                      Junior Member
                      • Mar 2026
                      • 14
                      #5
                      Okay, so I reverse engineered the whole shebang.
                      .. unsupported yet documented. Supported since X version though.

                      There you have it. GL whoever's reading this forum post as documentation.
                        • Selected Answer

                        Comment

                        Previous template Next
                        Working...