Added correct resolving for source IP addresses in case of HTTP proxies

Dockerfiles/web-apache-mysql/centos/conf/etc/httpd/modules.conf

@@ -15,3 +15,4 @@ LoadModule proxy_module modules/mod_proxy.so
 LoadModule proxy_fcgi_module modules/mod_proxy_fcgi.so
 LoadModule expires_module modules/mod_expires.so
 LoadModule headers_module modules/mod_headers.so
+LoadModule remoteip_module modules/mod_remoteip.so

Dockerfiles/web-apache-mysql/centos/conf/etc/zabbix/apache.conf

@@ -1,6 +1,9 @@
 Listen 8080
 
 <VirtualHost *:8080>
+    RemoteIPInternalProxy ${WEB_REAL_IP_FROM}
+    RemoteIPHeader ${WEB_REAL_IP_HEADER}
+
     <LocationMatch "/(ping|status)">
         Require all granted
 

Dockerfiles/web-apache-mysql/centos/conf/etc/zabbix/apache_ssl.conf

@@ -14,6 +14,9 @@ SSLSessionCache     shmcb:${APACHE_RUN_DIR}/ssl_scache(512000)
 SSLSessionCacheTimeout  300
 
 <VirtualHost *:8443>
+    RemoteIPInternalProxy ${WEB_REAL_IP_FROM}
+    RemoteIPHeader ${WEB_REAL_IP_HEADER}
+
     # Enable/Disable SSL for this virtual host.
     SSLEngine on
 

Dockerfiles/web-apache-mysql/centos/docker-entrypoint.sh

@@ -183,6 +183,11 @@ prepare_web_server() {
         export APACHE_SERVER_SIGNATURE="Off"
     fi
 
+    [ -z "${WEB_REAL_IP_FROM}" ] && sed -i '/WEB_REAL_IP_FROM/d' "$ZABBIX_CONF_DIR/apache.conf"
+    [ -z "${WEB_REAL_IP_FROM}" ] && sed -i '/WEB_REAL_IP_FROM/d' "$ZABBIX_CONF_DIR/apache_ssl.conf"
+    [ -z "${WEB_REAL_IP_HEADER}" ] && sed -i '/WEB_REAL_IP_HEADER/d' "$ZABBIX_CONF_DIR/apache.conf"
+    [ -z "${WEB_REAL_IP_HEADER}" ] && sed -i '/WEB_REAL_IP_HEADER/d' "$ZABBIX_CONF_DIR/apache_ssl.conf"
+
     mkdir -p "${APACHE_RUN_DIR}"
 }