I’ve been using your plugin for about 8 months now. I’ve since then incorporated load balancers into our network infrastructure.
Your plugin seems to be ruling traffic sent by the load balancers as the load balancer’s IP Address itself, and not the forwarded IP Address of the client.
Is there anyway you could improve the IP Address detection with people who utilize modern networking technology like load balancers?
We’re getting many many many false positives and it’s impossible to diagnose easily. The short term solution is to just whitelist our load balancer IP addresses, but that just defeats the purpose, right? Bruteforce attacks will come through as the white listed load balancer IP and not the IP address of the bruteforce attacker. Thus, the attacker essentially circumvents the “firewall”, providing zero protection. Am I right?
- The topic ‘Correct IP Detetection With Load Balancers’ is closed to new replies.