github-starred/frp
2
0
Fork 0
mirror of https://github.com/fatedier/frp.git synced 2026-05-15 08:05:49 -06:00
Code Issues 40 Projects Packages Wiki Activity Actions 1

[GH-ISSUE #2839] 请教如何获取客户端真实IP #2269

New issue
Closed
opened 2026-05-05 13:27:47 -06:00 by gitea-mirror · 7 comments
gitea-mirror commented 2026-05-05 13:27:47 -06:00
Owner
Copy link

Originally created by @smallfish01 on GitHub (Mar 14, 2022).
Original GitHub issue: https://github.com/fatedier/frp/issues/2839

Bug Description

内网web server用的是nginx,在nginx.conf里添加了X-Forwarded-For和X-Real-IP,

然后在frpc.ini设置了proxy_protocol_version,

当用户在外网访问next.domain.com时,在内部nginx日志上还是显示frps 的IP,不知道配置哪里出错了?

谢谢!

frpc Version

0.38.1

frps Version

0.38.1

System Architecture

Linux/amd64

Configurations

内网Nginx.conf:

server {
listen 80 proxy_protocol;
listen [::]:80;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}

server {
listen 443 ssl http2 proxy_protocol;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}

frpc.ini

[next]
type = https
local_port = 443
local_ip = 192.168.21.49
custom_domains = next.domain.com
proxy_protocol_version = v2

[next-http]
type = http
local_port = 80
local_ip = 192.168.21.49
custom_domains = next.domain.com
proxy_protocol_version = v2

Logs

No response

Steps to reproduce

...

Affected area

  • Docs
  • Installation
  • Performance and Scalability
  • Security
  • User Experience
  • Test and Release
  • Developer Infrastructure
  • Client Plugin
  • Server Plugin
  • Extensions
  • Others
Originally created by @smallfish01 on GitHub (Mar 14, 2022). Original GitHub issue: https://github.com/fatedier/frp/issues/2839 ### Bug Description 内网web server用的是nginx,在nginx.conf里添加了X-Forwarded-For和X-Real-IP, 然后在frpc.ini设置了proxy_protocol_version, 当用户在外网访问next.domain.com时,在内部nginx日志上还是显示frps 的IP,不知道配置哪里出错了? 谢谢! ### frpc Version 0.38.1 ### frps Version 0.38.1 ### System Architecture Linux/amd64 ### Configurations 内网Nginx.conf: server { listen 80 proxy_protocol; listen [::]:80; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } server { listen 443 ssl http2 proxy_protocol; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } frpc.ini [next] type = https local_port = 443 local_ip = 192.168.21.49 custom_domains = next.domain.com proxy_protocol_version = v2 [next-http] type = http local_port = 80 local_ip = 192.168.21.49 custom_domains = next.domain.com proxy_protocol_version = v2 ### Logs _No response_ ### Steps to reproduce 1. 2. 3. ... ### Affected area - [ ] Docs - [ ] Installation - [ ] Performance and Scalability - [ ] Security - [ ] User Experience - [ ] Test and Release - [ ] Developer Infrastructure - [ ] Client Plugin - [ ] Server Plugin - [ ] Extensions - [ ] Others
gitea-mirror commented 2026-05-05 13:27:51 -06:00
Author
Owner
Copy link

@smallfish01 commented on GitHub (Mar 14, 2022):

经过排查,是Nginx配置不对,正确的应该是:
listen 443 ssl http2 proxy_protocol;
real_ip_header proxy_protocol;
set_real_ip_from 192.168.20.2(frp_server_IP);

但是还有个问题,内网有一台web server用的是IIS,我在frpc.ini里配置了proxy_protocol_version = v2后在外网就无访问该服务器,请问这是什么原因,要如何才能在iis服务器的日志上获取客户端访问的真实IP?
谢谢!

<!-- gh-comment-id:1066581716 --> @smallfish01 commented on GitHub (Mar 14, 2022): 经过排查,是Nginx配置不对,正确的应该是: listen 443 ssl http2 proxy_protocol; real_ip_header proxy_protocol; set_real_ip_from 192.168.20.2(frp_server_IP); 但是还有个问题,内网有一台web server用的是IIS,我在frpc.ini里配置了proxy_protocol_version = v2后在外网就无访问该服务器,请问这是什么原因,要如何才能在iis服务器的日志上获取客户端访问的真实IP? 谢谢!
gitea-mirror commented 2026-05-05 13:27:52 -06:00
Author
Owner
Copy link

@Becods commented on GitHub (Mar 16, 2022):

配置proxy_protocol之后web服务端只能解析proxy_protocol协议
请另开端口

<!-- gh-comment-id:1068923621 --> @Becods commented on GitHub (Mar 16, 2022): 配置proxy_protocol之后web服务端只能解析proxy_protocol协议 请另开端口
gitea-mirror commented 2026-05-05 13:27:52 -06:00
Author
Owner
Copy link

@smallfish01 commented on GitHub (Mar 21, 2022):

配置proxy_protocol之后web服务端只能解析proxy_protocol协议 请另开端口

请教下,IIS支持该协议吗,需要怎么配置

<!-- gh-comment-id:1073515065 --> @smallfish01 commented on GitHub (Mar 21, 2022): > 配置proxy_protocol之后web服务端只能解析proxy_protocol协议 请另开端口 请教下,IIS支持该协议吗,需要怎么配置
gitea-mirror commented 2026-05-05 13:27:53 -06:00
Author
Owner
Copy link

@peaceanddemocracy commented on GitHub (May 30, 2022):

配置proxy_protocol之后web服务端只能解析proxy_protocol协议 请另开端口

是开哪边的端口,nginx还是?可以给个配置文件参考下嘛,小白不懂

<!-- gh-comment-id:1141096887 --> @peaceanddemocracy commented on GitHub (May 30, 2022): > 配置proxy_protocol之后web服务端只能解析proxy_protocol协议 请另开端口 是开哪边的端口,nginx还是?可以给个配置文件参考下嘛,小白不懂
gitea-mirror commented 2026-05-05 13:27:53 -06:00
Author
Owner
Copy link

@smallfish01 commented on GitHub (Jun 12, 2022):

配置proxy_protocol之后web服务端只能解析proxy_protocol协议 请另开端口

是开哪边的端口,nginx还是?可以给个配置文件参考下嘛,小白不懂
Nginx,我上面有配置,您可以看看。

<!-- gh-comment-id:1153102011 --> @smallfish01 commented on GitHub (Jun 12, 2022): > > 配置proxy_protocol之后web服务端只能解析proxy_protocol协议 请另开端口 > > 是开哪边的端口,nginx还是?可以给个配置文件参考下嘛,小白不懂 Nginx,我上面有配置,您可以看看。
gitea-mirror commented 2026-05-05 13:27:54 -06:00
Author
Owner
Copy link

@peaceanddemocracy commented on GitHub (Jun 13, 2022):

配置proxy_protocol之后web服务端只能解析proxy_protocol协议 请另开端口

是开哪边的端口,nginx还是?可以给个配置文件参考下嘛,小白不懂
Nginx,我上面有配置,您可以看看。

我按照这个设置了,nginx启动报错。。。

<!-- gh-comment-id:1153970411 --> @peaceanddemocracy commented on GitHub (Jun 13, 2022): > > > 配置proxy_protocol之后web服务端只能解析proxy_protocol协议 请另开端口 > > > > > > 是开哪边的端口,nginx还是?可以给个配置文件参考下嘛,小白不懂 > > Nginx,我上面有配置,您可以看看。 我按照这个设置了,nginx启动报错。。。
gitea-mirror commented 2026-05-05 13:27:54 -06:00
Author
Owner
Copy link

@smallfish01 commented on GitHub (Jun 17, 2022):

把你的错误和配置贴出来看看。

<!-- gh-comment-id:1158591277 --> @smallfish01 commented on GitHub (Jun 17, 2022): 把你的错误和配置贴出来看看。
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
dev
new
master
copilot/review-pull-request-5198
v0.68.1
v0.68.0
v0.67.0
v0.66.0
v0.65.0
v0.64.0
v0.63.0
v0.62.1
v0.62.0
v0.61.2
v0.61.1
v0.61.0
v0.60.0
v0.59.0
v0.58.1
v0.58.0
v0.57.0
v0.56.0
v0.55.1
v0.55.0
v0.54.0
v0.53.2
v0.53.1
v0.53.0
v0.52.3
v0.52.2
v0.52.1
v0.52.0
v0.51.3
v0.51.2
v0.51.1
v0.51.0
v0.50.0
v0.49.0
v0.48.0
v0.47.0
v0.46.1
v0.46.0
v0.45.0
v0.44.0
v0.43.0
v0.42.0
v0.41.0
v0.40.0
v0.39.1
v0.39.0
v0.38.0
v0.37.1
v0.37.0
v0.36.2
v0.36.1
v0.36.0
v0.35.1
v0.35.0
v0.34.3
v0.34.2
v0.34.1
v0.34.0
v0.33.0
v0.32.1
v0.32.0
v0.31.2
v0.31.1
v0.31.0
v0.30.0
v0.29.1
v0.29.0
v0.28.2
v0.28.1
v0.28.0
v0.27.1
v0.27.0
v0.26.0
v0.25.3
v0.25.2
v0.25.1
v0.25.0
v0.24.1
v0.24.0
v0.23.3
v0.23.2
v0.23.1
v0.23.0
v0.22.0
v0.21.0
v0.20.0
v0.19.1
v0.19.0
v0.18.0
v0.17.0
v0.16.1
v0.16.0
v0.15.1
v0.15.0
v0.14.1
v0.14.0
v0.13.0
v0.12.0
v0.11.0
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
v0.5.0
v0.3.0
v0.2.0
v0.1.0
Labels
Clear labels   
In Progress

   
WIP

   
WaitingForInfo

   
bug

   
doc

   
duplicate

   
easy

   
enhancement

   
future

   
help wanted

   
invalid

   
lifecycle/stale

   
need-issue-template

   
need-usage-help

   
no plan

   
proposal

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
todo
No labels
In Progress
WIP
WaitingForInfo
bug
doc
duplicate
easy
enhancement
future
help wanted
invalid
lifecycle/stale
need-issue-template
need-usage-help
no plan
proposal
pull-request
question
todo
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/frp#2269
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?