• Welcome to the Chevereto user community!

    Here users from all over the world gather around to learn the latest about Chevereto and contribute with ideas to improve the software.

    Please keep in mind:

  • Chevereto Support CLST

    Support response

    Support checklist

    • Got a Something went wrong message? Read this guide and provide the actual error. Do not skip this.
    • Confirm that the server meets the System Requirements
    • Check for any available Hotfix - your issue could be already reported/fixed
    • Read documentation - It will be required to Debug and understand Errors for a faster support response

Cloudflare IP in uploader IP instead of real IP

Status
Not open for further replies.
M

mkerala

👽 Chevereto Freak
Today I noticed that I can't access my site as I was "banned". On further investigation I found I had banned a Cloudflare IP when I was doing moderation. Further looking into this I found certain uploads from Asia region has Cloudflare IP instead of real uploader IP. However, for other regions images have correct uploader IP. I'm not sure if this is an issue with Cloudflare or Chevereto.

▶🚶‍Reproduction steps
  1. Enable cloudflare
  2. Upload an image using Singapore or Thailand IP address
  3. Check "Uploader IP"
Sample uploaded to demo site: https://demo.chevereto.com/i/img-20181226-101727.wVD

😢Unexpected result

"Uploader IP" has a cloudflare IP address.

📃Error log message

No errors
 
mkerala2 said:
Sample uploaded to demo site: https://demo.chevereto.com/i/img-20181226-101727.wVD
Click to expand...
I'm getting this: 172.69.134.133 (which is a CloudFlare IP).

You should try debugging this function: G\get_client_ip()

Code: 
    function get_client_ip()
    {
        if(isset($_SERVER['G_CLIENT_IP'])) {
            return $_SERVER['G_CLIENT_IP'];
        }
        $client_ip = !empty($_SERVER['REMOTE_ADDR']) ? $_SERVER['REMOTE_ADDR'] : (!empty($_ENV['REMOTE_ADDR']) ? $_ENV['REMOTE_ADDR'] : null);

        if (array_key_exists('HTTP_CF_CONNECTING_IP', $_SERVER) && $_SERVER['HTTP_CF_CONNECTING_IP'] == $_SERVER['REMOTE_ADDR']) {
            return $_SERVER['HTTP_CF_CONNECTING_IP'];
        }

        if (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) {
            $entries = preg_split('/[\s,]/', $_SERVER['HTTP_X_FORWARDED_FOR'], -1, PREG_SPLIT_NO_EMPTY);

            reset($entries);

            foreach ($entries as $entry) {
                $entry = trim($entry);
                if (preg_match('/^([0-9]+\.[0-9]+\.[0-9]+\.[0-9]+)/', $entry, $ip_list)) {
                    $private_ip = array(
                          '/^0\./',
                          '/^127\.0\.0\.1/',
                          '/^192\.168\..*/',
                          '/^172\.((1[6-9])|(2[0-9])|(3[0-1]))\..*/',
                          '/^10\..*/');

                    $found_ip = preg_replace($private_ip, $client_ip, $ip_list[1]);
                    if ($client_ip != $found_ip) { //  and !isset($_SERVER['HTTP_CF_CONNECTING_IP']
                        $client_ip = $found_ip;
                        break;
                    }
                }
            }
        }
        $_SERVER['G_CLIENT_IP'] = $client_ip;
        return $client_ip;
    }

I've added this route to test purposes: https://demo.chevereto.com/hello-world (G_CLIENT_IP) is the IP that Chevereto will try to use.
 
I got below and G_CLIENT_IP is my correct IP.

Code: 
Array
(
    [REMOTE_ADDR] => 172.68.146.120
    [HTTP_CF_CONNECTING_IP] => 2405:204:d404:6d7d:2856:4468:1fbf:57ca
    [HTTP_X_FORWARDED_FOR] => 2405:204:d404:6d7d:2856:4468:1fbf:57ca
    [G_CLIENT_IP] => 2405:204:d404:6d7d:2856:4468:1fbf:57ca
)
hello world!

Today, I also found Cloudflare US IP in one of the images on the site https://ipinfo.io/108.162.216.67
 
I think the problem is with IPv6 address. I got two internet connection with one having IPv6 and another normal IPv4. The issue occurs on the one with IPv6 address. To confirm this I have configured one of my servers in Canada with a IPv6 and uploaded a image and Cloudflare IP was picked instead of IPv6.

Sample: https://demo.chevereto.com/i/nmp.wVB
 
I can't see the sample, the image got deleted. Upload it again, without expiration to tell you the IP.
 
That's strange, I am getting only cloudflare IPs on both on my main site and test site when uploading from IPv6.

https://gifyu.com/image/w9tw

Also looking at the image table, there is no IPv6 for any recent uploads. I used get at least 30% traffic from IPv6 address.
 
Last edited:
Status
Not open for further replies.
Back
Top