Mod_security Logging
- by Hekuran S. Doli
Im trying to run mod_security as standalone service with nginx as reverse proxy everything works fine except logging. Mod_security logs reverse proxys ip addres instead of clients ip address.
I would appreciate if someone can help.
The following is an example of logfile where mod_security is logging 127.0.0.1 instead of clients ip address.
2012/08/29 14:18:13 [info] 206862#0: [client 127.0.0.1] ModSecurity:
Access denied with code 403 (phase 2). Pattern match ...