• Resolved Teet Bergmann

    (@teetb)


    I have load balancer before the website. If brute force comes through it blacklists the load balancer ip not the real ip it comed. In transfer log the real ip is last in line not first as normal without balancer. Is there a fix for that?

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support chandelierrr

    (@shanedelierrr)

    Hi @teetb,

    Glad you reached out!

    This usually happens when a site is behind a load balancer or reverse proxy. In this setups, Solid Security may detect the load balancer’s IP instead of the real visitor IP. When that happens, brute force protection can end up blocking the load balancer rather than the actual source of the requests, which matches what you’re seeing.

    If your host provides an X-Real-IP header, you can do these steps:

    1. Set the Proxy Detection to Manual in Security > Settings > Global Settings > IP Detection
    2. Then, make sure to set the Proxy Header to X-Real-IP
    3. Click Check IP and confirm it shows your real public IP
    4. Save the settings

    Let me know if this configuration works for you.

    Thread Starter Teet Bergmann

    (@teetb)

    Tnx that worked

Viewing 2 replies - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.