mod_ip_forwarding 2.0 review
Downloadmod_ip_forwarding is a customizable module for forwarding IP@ between a proxy (or a chain of proxies) and a main server, in a semi-se
|
|
mod_ip_forwarding is a customizable module for forwarding IP@ between a proxy (or a chain of proxies) and a main server, in a semi-secure way.
This module is dependent on the Apache API. If you'd like to use the module on an Apache version higher than v/2.x / v1.3.x, please mail me.
The motivation for this module was to be able to forward the IP address of the source of a request between a proxy and the final destination server. Under normal circumstances, this information is lost and the server only sees the proxy's IP address. This hampers access control based on IP addresses. This module answers this limitation in a transparent and secure way.
Proxies forward the IP address inside a custom HTTP header. A server only accepts this new header from a list of user-defined authorized proxies. Once the header is accepted, it's internally substituted with the proxy's IP address, so that this value is used for all access control and CGI modules. This doesn't affect the actual IP address used to answer the proxy (they are stored in different places).
Requirements:
Apache 1.3.x or Apache 2.x
mod_ip_forwarding 2.0 search tags