Title: X-Real-IP HTTP header
Last modified: January 16, 2017

---

# X-Real-IP HTTP header

 *  Resolved [keychange](https://wordpress.org/support/users/keychange/)
 * (@keychange)
 * [9 years, 5 months ago](https://wordpress.org/support/topic/x-real-ip-http-header/)
 * I am running centos vps with nginx with over 20 WP installs with Wordfence. On
   all other installs WF suggests X-Real-IP HTTP header however on one site it suggests
   PHP’s built in REMOTE_ADDR. However if I let WF change to these settings my VPS
   IP starts showing up on the blocked list.
 * It has been doing this for a couple of months and I can’t think why one domain
   is being incorrectly detected. Today I noted an alert Notice: _**Undefined variable:
   check\_exts in /home/mydomain/public\_html/wp-content/plugins/mainwp/page/page-
   mainwp-api-settings.php on line 35 Notice: unserialize(): Error at offset 0 of
   21 bytes in /home/mydomain/public\_html/wp-content/plugins/mainwp/class/class-
   mainwp-api-manager-plugin-update.php on line 115 0**_
 * So I set it back to X-Real-IP HTTP header and the error above disappeared – but
   the alert stating I should PHP remeains.
    All updates are current on all sites–
   plug ins are common to other sites

Viewing 1 replies (of 1 total)

 *  [wfalaa](https://wordpress.org/support/users/wfalaa/)
 * (@wfalaa)
 * [9 years, 5 months ago](https://wordpress.org/support/topic/x-real-ip-http-header/#post-8677528)
 * Hi,
    I wonder if you have “mainwp” installed on all of these 20 sites? or you
   are just running a Network (multisite)? any errors you got with “mainwp” plugin
   disabled?
 * In general, if you are sure that the selected option for “[How does Wordfence get IPs](https://docs.wordfence.com/en/Wordfence_options#How_does_Wordfence_get_IPs)”
   is correct, then you can disable “[Scan for misconfigured How does Wordfence get IPs](https://docs.wordfence.com/en/Wordfence_options#Scan_for_misconfigured_How_does_Wordfence_get_IPs)”
   on this specific website.
 * Thanks.

Viewing 1 replies (of 1 total)

The topic ‘X-Real-IP HTTP header’ is closed to new replies.

 * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865)
 * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wordfence/)
 * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/)

 * 1 reply
 * 2 participants
 * Last reply from: [wfalaa](https://wordpress.org/support/users/wfalaa/)
 * Last activity: [9 years, 5 months ago](https://wordpress.org/support/topic/x-real-ip-http-header/#post-8677528)
 * Status: resolved