Opened 10 years ago
Closed 10 years ago
#627 closed enhancement (worksforme)
include ngx_http_realip_module module into the default package distribution
Reported by: | (GalaxyMaster) Outside | Owned by: | |
---|---|---|---|
Priority: | minor | Milestone: | |
Component: | nginx-package | Version: | 1.6.x |
Keywords: | Cc: | ||
uname -a: | Linux centos.internal 3.10.0-123.6.3.el7.x86_64 #1 SMP Wed Aug 6 21:12:36 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux | ||
nginx -V: |
nginx version: nginx/1.6.1
built by gcc 4.8.2 20140120 (Red Hat 4.8.2-16) (GCC) TLS SNI support enabled configure arguments: --prefix=/etc/nginx --sbin-path=/usr/sbin/nginx --conf-path=/etc/nginx/nginx.conf --error-log-path=/var/log/nginx/error.log --http-log-path=/var/log/nginx/access.log --pid-path=/var/run/nginx.pid --lock-path=/var/run/nginx.lock --http-client-body-temp-path=/var/cache/nginx/client_temp --http-proxy-temp-path=/var/cache/nginx/proxy_temp --http-fastcgi-temp-path=/var/cache/nginx/fastcgi_temp --http-uwsgi-temp-path=/var/cache/nginx/uwsgi_temp --http-scgi-temp-path=/var/cache/nginx/scgi_temp --user=nginx --group=nginx --with-http_ssl_module --with-http_realip_module --with-http_addition_module --with-http_sub_module --with-http_dav_module --with-http_flv_module --with-http_mp4_module --with-http_gunzip_module --with-http_gzip_static_module --with-http_random_index_module --with-http_secure_link_module --with-http_stub_status_module --with-http_auth_request_module --with-mail --with-mail_ssl_module --with-file-aio --with-ipv6 --with-http_spdy_module --with-cc-opt='-O2 -g -pipe -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m64 -mtune=generic' |
Description
I'm a very happy user of nginx. However, over the last couple of years I found that each time I'm deploying a web solution based on nginx I face the same issue over and over again: the usual deployment scenario involves a set of nginx instances running behind a load-balancer (be it AWS ELB, F5, or HAproxy) and there is no easy way to extract the real IP of the visitor using the default set of modules provided with the standard nginx package.
The obvious way is to recompile nginx with the ngx_http_realip_module module included, but then keeping up to date with the latest releases becomes a burden (since you can no longer update from the official nginx package repositories). Is there any chance to include the ngx_http_realip_module module into the standard package for nginx? I believe a lot of folks will appreciate this since all cloud soultions provide load-balancers as a service and running nginx there requires the ngx_http_realip_module module to be able to extract visitor's IP addresses from X-Forwarded-For.
Change History (3)
comment:1 by , 10 years ago
comment:2 by , 10 years ago
Ouch, silly me -- I was not that attentive. Thank you! Can we change the scope of the ticket to: update the official documentation then? :)) http://nginx.org/en/docs/http/ngx_http_realip_module.html says that the nodule is not built in by default. Or does the official documentation refer to building from source?
P.S. Again, thank you for pointing this out to me!
Official nginx packages do enable realip module, as can be seen in nginx -V output you provided in this ticket: ...--with-http_ssl_module --with-http_realip_module...
Are you sure you're using official packages on the systems where you observe this behaviour?