Forum: Dock Sud BBS

Synchronet Web Service Question

From WitNik@VERT/BGGRSCYN to All on Sat Jul 3 15:33:51 2021

I've recently configured a reverse http/https proxy in front of my SBBS. My setup is working well; however, SBBS is currently logging all web traffic (IP addresses) as coming from the reverse proxy vs. the Internet-based clients.

Is there a way to cause SBBS to "trust" the proxy address and read the standard X-Forwarded-For headers provided by the proxy to log external client IPs?

I had looked in the docs/wiki and was unable to find anything relevant.

Thanks in advance,
-WitNik

-WitNik

---
� Synchronet � * Origin: Beggar's Canyon - beggarscyn.com *

From Ragnarok@ragnarok@docksud.com.ar to WitNik on Sat Jul 3 20:48:02 2021

El 3/7/21 a las 19:33, WitNik escribió:

I've recently configured a reverse http/https proxy in front of my SBBS. My setup is working well; however, SBBS is currently logging all web traffic (IP addresses) as coming from the reverse proxy vs. the Internet-based clients.

Is there a way to cause SBBS to "trust" the proxy address and read the standard X-Forwarded-For headers provided by the proxy to log external client IPs?

I had looked in the docs/wiki and was unable to find anything relevant.

Thanks in advance,
-WitNik

i have same issue on nginx

location @app {
rewrite /web(.*) /$1 break;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://127.0.0.1:8088;
proxy_redirect off;
}

the log show connection from 127.0.0.1,

this issue also occurs on websocket proxy

From poindexter FORTRAN@VERT/REALITY to WitNik on Wed Jul 7 07:49:00 2021

WitNik wrote to All <=-

I've recently configured a reverse http/https proxy in front of my
SBBS. My setup is working well; however, SBBS is currently logging all
web traffic (IP addresses) as coming from the reverse proxy vs. the Internet-based clients.

If you don't mind me asking, what are you using? I'm setting up nginx now, mostly because I want my Letsencrypt-enabled systems to auto-update without having to repoint my NAT rules at renewal time, and I know nginx.

... Do the words need changing?
--- MultiMail/DOS v0.52

From WitNik@VERT/BGGRSCYN to poindexter FORTRAN on Fri Jul 9 20:53:00 2021

Re: Re: Synchronet Web Service Question
By: poindexter FORTRAN to WitNik on Wed Jul 07 2021 07:49 am

If you don't mind me asking, what are you using? I'm setting up nginx now, mostly because I want my Letsencrypt-enabled systems to auto-update without having to repoint my NAT rules at renewal time, and I know nginx.

Same (nginx on the backend).

-WitNik

---
� Synchronet � * Origin: Beggar's Canyon - beggarscyn.com *

Who's Online
Recent Visitors
- Ragnarok
  Sat Sep 13 04:32:13 2025
  from Dock Sud via Telnet
- Gus8027
  Sat Sep 13 03:35:28 2025
  from Buenos Aies via Telnet
- Ragnarok
  Sat Sep 13 01:51:04 2025
  from Dock Sud via HTTP
- Ragnarok
  Sat Sep 13 01:50:17 2025
  from Dock Sud via SSH
- Guest
  Sat Sep 13 00:25:47 2025
  from Linuxshell via Raw
- Damian Kleiman
  Fri Sep 12 22:55:56 2025
  from Rosario, Sf via Telnet
- Ragnarok
  Fri Sep 12 09:09:14 2025
  from Dock Sud via NNTP
- Ragnarok
  Thu Sep 11 20:41:27 2025
  from Dock Sud via SSH
- Damian Kleiman
  Thu Sep 11 00:01:30 2025
  from Rosario, Sf via Telnet
- Ragnarok
  Wed Sep 10 22:41:23 2025
  from Dock Sud via SSH

System Info

Sysop:	Ragnarok
Location:	Dock Sud, Bs As, Argentina
Users:	136
Nodes:	10 (0 / 10)
Uptime:	10:41:28
Calls:	15,171
Calls today:	4
Files:	19,857
D/L today:	43 files (4,870K bytes)
Messages:	1,691,584