CSF firewall - Check apache for mod_cloudflare
Hello,
I use Cloudlinux 7 and EA4 on a dedicated server, EA4 has module mod_cloudflare compiled but still CSF shows following warning -
Check apache for mod_cloudflare
-------------------------------------
This module logs the real users IP address to Apache. If this is reported to lfd via ModSecurity, cxs or some other vector through Apache it will lead to that IP being blocked, but because the IP is coming through the CloudFlare service the IP will not be blocked as so far as iptables is concerned the originating IP address is CloudFlare itself and the abuse will continue.
How to fix this, so that csf detects the mod_cloudflare and blocks end user IP who abuse the services.
Thanks
-
Hello, CSF is a third-party application developed by ConfigServer. You can find their contact options on the following page if you'd like to report an issue about their software: ConfigServer Technical Support Thank you. 0 -
This forum post should be of some use: CloudFlare? - ConfigServer Community Forum 0
Please sign in to leave a comment.
Comments
2 comments