**王小美** @[email protected] · 2020-08-30T04:57:31Z

王小美 @[email protected]

为什么我用Mastodon提供的Nginx配置，但是记录到的客户端IP都是CDN节点的IP呢？各位Nginx是怎么配置的？

location @proxy {
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header X-Forwarded-Proto https;
    proxy_set_header Proxy "";
    proxy_pass_header Server;

    proxy_pass http://mastodon_docker_web;
    proxy_buffering on;
    proxy_redirect off;
    proxy_http_version 1.1;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection $connection_upgrade;

    proxy_cache CACHE;
    proxy_cache_valid 200 7d;
    proxy_cache_valid 410 24h;
    proxy_cache_use_stale error timeout updating http_500 http_502 http_503 http_504;
    add_header X-Cached $upstream_cache_status;
    add_header Strict-Transport-Security "max-age=31536000";

    tcp_nodelay on;
}

Aug 30, 2020, 04:57 · · Web · · ·

**‌eh5 Official** @[email protected] · Aug 30, 2020, 05:05

**‌eh5 Official** @[email protected] · Aug 30, 2020, 05:05

Aug 30, 2020, 05:05

‌eh5 Official @[email protected]

@mashiro 要检查一下你CDN传过来的X-Forwarded-For头

**dogcraft** @[email protected] · Aug 30, 2020, 05:06

**dogcraft** @[email protected] · Aug 30, 2020, 05:06

Aug 30, 2020, 05:06

dogcraft @[email protected]

@[email protected]

我是在/etc/nginx/conf.d/下面加上了

#Cloudflare
set_real_ip_from 173.245.48.0/20;
set_real_ip_from 103.21.244.0/22;
set_real_ip_from 103.22.200.0/22;
set_real_ip_from 103.31.4.0/22;
set_real_ip_from 141.101.64.0/18;

# use any of the following two
real_ip_header CF-Connecting-IP;
#real_ip_header X-Forwarded-For;

这个是用网上找的脚本生成的，这样传递给后端或者日志里的记录都是正确的ip地址。