Mod_security Logging
Posted
by
Hekuran S. Doli
on Server Fault
See other posts from Server Fault
or by Hekuran S. Doli
Published on 2012-08-29T15:02:17Z
Indexed on
2012/08/29
15:40 UTC
Read the original article
Hit count: 213
Im trying to run mod_security as standalone service with nginx as reverse proxy everything works fine except logging. Mod_security logs reverse proxys ip addres instead of clients ip address.
I would appreciate if someone can help.
The following is an example of logfile where mod_security is logging 127.0.0.1 instead of clients ip address.
2012/08/29 14:18:13 [info] 206862#0: [client 127.0.0.1] ModSecurity: Access denied with code 403 (phase 2). Pattern match ...
© Server Fault or respective owner