I've created a wordpress site that's working fine on internal network. Through webserver protection I want publish it publicly and used the setup articles for that in teh knowledge based. Everything seems to work, except for one big problem: It is published and displayed in test only. All designs, featurs, headers, etc. are stripped. So it is unusable for the public.
Any ideas what can cause this? Must be something in the UTM, because on internal network the website is working and looking fine.
Maybe your website is with https? So the URL of the files/images may be wrong.
When i was using wordpress with WAF , i had to edit the .htaccess file (apache webserver) to fix this.
I had to edit the .htaccess file because of 2 things:
-Wordpress cannot get the real IP of the user, it just get the IP of the Sophos WAF (in short: no analysing based on ip)
-https wasn't working for some pages/files.
Here is what i put in the .htaccess file:
// Use X-Forwarded-For HTTP Header to Get Visitor's Real IP Address
if ( isset( $_SERVER['HTTP_X_FORWARDED_FOR'] ) ) {
$http_x_headers = explode( ',', $_SERVER['HTTP_X_FORWARDED_FOR'] );
$_SERVER['REMOTE_ADDR'] = $http_x_headers[0];
}
// Important for HTTPS with Reverse Proxy (WAF) !!!!
define('FORCE_SSL_ADMIN', true);
if ($_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https')
$_SERVER['HTTPS']='on';
doesn't work for me here also ...
Please review Sophos!