Solved: cPanel’s CPHULK, CloudFlare and X-Forwarded-For

JeffTechnical Articles & Notes

At the time of posting, there is a feature request on the cPanel website which, if approved, would enable the admin of a cPanel server to have CPHULK act on the content of the X-Forwarded-For header in HTTP requests. https://features.cpanel.net/topic/have-option-for-cphulkd-to-action-on-x-forwarded-for cPanel feel this is a bad idea because the X-Forwarded-For header is easily spoofed. Which could lead to all sorts … Read More

CloudFlare & WHM/cPanel Apache Server Firewall Conflict

JeffTechnical Articles & Notes

CloudFlare adds another level of security and resilience in front of our dedicated server. It’s an excellent idea and for basic use, it’s completely free. Fab. However, there’s a problem. Because all server traffic which is routed via CloudFlare effectively comes from CloudFlare, and because it’s imperative CloudFlare’s IP address ranges are never blocked (because one bad apple would spoil … Read More