This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

HTTP Server Logs

Hello,

I know, it is a silly question [:)]

There is an Apache Server behind the WAF. The access logs of the Apache server show the access to this server from the WAF device only.

Is there a way to have the Apache server to log visits - instead of or additionally to the logging on WAF?

Thank you.

This thread was automatically locked due to age.

0 scorpionking over 9 years ago
The original IP is in the "X-Forwarded-For" header. So your Webserver has to evaluate this header (e.g. by a custom logging rule).
----------
Sophos user, admin and reseller.
Private Setup:

XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)

UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
Cancel
Vote Up 0 Vote Down

Cancel
0 scorpionking over 9 years ago
I just googled a bit:
On Apache you can install a module called rpaf which lets you set the Reverse Proxy IP. rpaf then exchanges the WAF IP by the "X-Forwarded-For" IP.
----------
Sophos user, admin and reseller.
Private Setup:

XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)

UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
Cancel
Vote Up 0 Vote Down

Cancel