Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SOLVED RemoteIP and Proxy server config

Discussion in 'EasyApache' started by UCLA-Daniel, Apr 4, 2018.

  1. UCLA-Daniel

    UCLA-Daniel Registered

    Joined:
    Apr 4, 2018
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    76
    Location:
    Seoul, Korea
    cPanel Access Level:
    Root Administrator
    Hi Guys, cPanel thank you for a great product and quick patches to updates and security. Having said that, heads up. Last night's update broke my remoteIP and proxy server config.

    FYI I have the "remoteIP" module (ea-apache24-mod_remoteip) installed and the cpanel update last night threw my cpanel config for a loop. That is to say that it "rpmsaved" it (as 360_mod_remoteip.conf.rpmsave) but replaced it with a vanilla config (370_mod_remoteip.conf) without my proxy server IP in them. So please check your cpanel configs (/etc/apache2/conf.modules.d/) and your web logs this morning.

    We were alerted this morning to many hacking attempts. When we looked closer we realized the remoteip module was not working correctly. So in the weblogs all the hacking looked like they from the proxy IP and not from the true originating IPs. Normally we block all untrusted IPs to login pages.

    This update will undoubtedly open up security policies implemented via .htaccess files and proxy servers. Please note and check your logs. This is how we found out about this issue. Hope this helps anyone seeing strange traffic today.

    Again, thank you cPanel and all forum users for the best support and product. This is the first time I've had an issue with an update and wanted to post to help others, just like this forum has helped us so many times before. Thanks all.
     
  2. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    1,424
    Likes Received:
    98
    Trophy Points:
    103
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @UCLA-Daniel

    While I'm unsure if related based on the information you provided I do know there were issues with the recent EasyApache update last night which we discuss in a blog post today: Problem with recent EasyApache update | cPanel Blog

    If you are continuing to experience issues with this please open a ticket using the link in my signature so we can take a closer look.


    Thank you,
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    1,424
    Likes Received:
    98
    Trophy Points:
    103
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @UCLA-Daniel

    I apologize I believe I misread your initial post. I was able to find a ticket that was opened for you for this issue and it looks like in this instance the modifications directly to 370_mod_remoteip.conf and 360_mod_remoteip.conf were the culprit. Modifications made here are subject to being overwritten and it is best to make these changes in /etc/apache2/conf.d/includes to ensure that a future update won't be overwritten. I also want to thank you for your kind words and your letting us know of the issue, we do very much appreciate it.


    Thank you,
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. UCLA-Daniel

    UCLA-Daniel Registered

    Joined:
    Apr 4, 2018
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    76
    Location:
    Seoul, Korea
    cPanel Access Level:
    Root Administrator
    Hi Lauren,

    Yes, looks like the way I configured remoteIP was not the best way. I got the instructions (best practices) from my support ticket tech and will post here. Hopefully it will help someone else avoid my pitfalls. Again thank you and cPanel for the great job you guys do day in and day out! Another save by Support and the Forum!!

    #### Correct way to configure RemoteIP in cPanel ####
    ~
     
    #4 UCLA-Daniel, Apr 4, 2018
    Last edited by a moderator: Apr 4, 2018
  5. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    1,424
    Likes Received:
    98
    Trophy Points:
    103
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi Dan,

    I'm really happy we were able to help you get that sorted. Thank you so much for posting the configuration instructions as well!


    Thank you!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice