In PHP, the common way to obtain the requested IP is generally through three super global variables, but it is obvious that the three methods of obtaining the IP are not completely reliable.
$_SERVER['REMOTE_ADDR']; // 客户端与服务器握手IP,如果使用代理则会获取到代理IP $_SERVER['HTTP_CLIENT_IP']; // 代理服务器发送的HTTP头(可伪造) $_SERVER['HTTP_X_FORWARDED_FOR']; // 用户是在哪个IP使用的代理(可伪造)
If the domain name has not been proxied, the generally safe way is REMOTE_ADDR. If it is an overseas network, the safest way is for cloud vendors to provide reliable source IP acquisition methods, such as those provided by Google Cloud:
When no forged IP appears, X-forwarded-For is usually the real IP of the client, load balancing IP
When a forged IP appears, Google Cloud will forge the content For prefixing, the format is
So regardless of whether it is forged or not, we can cut the string by commas and find the penultimate X-forwarded- For the value, you can get the real client IP.
Of course, if the domain name cloud vendor does not provide similar domain name information, we cannot simply obtain it through super global variables.
When the domain name cloud vendor does not provide the corresponding request source IP information, we can also negotiate a confirmation mechanism through server interaction.
Similar: Add source IP information to the HTTP request header for judgment. Since it is a communication process between servers, the forger cannot know the specific information content of the forgery, so usually such interaction is reliable.
Judgment logic process
Server A: Add the variable MY_REALIP_c32fsjk234 => "1.2.3.4" to the HTTP request header. At this time, please note that the variable name should not be too large. Simple, and it is best for both parties to agree on a random key as the variable name, similar to MY_REALIP_c32fsjk234
Accepting requester B: Use $_SERVER['MY_REALIP_c32fsjk234'] to determine whether the request header contains the MY_REALIP_c32fsjk234 variable. If so, obtain the corresponding IP as real IP.
Original link: https://blog.csdn.net/panguangyuu/article/details/122211682
Recommended reading:
The above is the detailed content of How to get the real IP with PHP. For more information, please follow other related articles on the PHP Chinese website!
网站怎么通过nginx设置黑/白名单IP限制及国家城市IP访问限制Jun 01, 2023 pm 05:27 PM一、黑/白名单IP限制访问配置nginx配置黑白名单有好几种方式,这里只介绍常用的两种方法。1、第一种方法:allow、denydeny和allow指令属于ngx_http_access_module,nginx默认加载此模块,所以可直接使用。这种方式,最简单,最直接。设置类似防火墙iptable,使用方法:直接配置文件中添加:#白名单设置,allow后面为可访问IPlocation/{allow123.13.123.12;allow23.53.32.1/100;denyall;}#黑名单设置,
ip与mac绑定什么意思Mar 09, 2023 pm 04:44 PMip与mac绑定是指将特定的IP地址与特定的MAC地址关联起来,使得只有使用该MAC地址的设备才能够使用该IP地址进行网络通信。ip与mac绑定可以防止被绑定的主机的IP地址不被假冒,前提条件:1、MAC地址是唯一的,并且不可假冒;只能绑定与路由器直接相连的网络上的主机(也就是主机的网关在路由器上)。
微信怎么查看ip地址May 31, 2023 am 09:16 AM微信查看ip地址的方法:1、登录电脑版微信,右键点击屏幕下方的任务栏,点击“任务管理器”;2、弹出任务管理器时,点击左下角的“详细信息”;3、任务管理器进入“性能”选项,点击“打开资源监视器”;4、选择“网络”,勾选微信进程“Wechat.exe”;5、点击下面的“TCP连接”即可监视微信网络IP相关情况,发送消息得到回复就会显示他人的IP地址。
nginx如何设置目录白名单和ip白名单May 18, 2023 pm 03:52 PM1.设置目录白名单:对指定请求路径不设置限制,如对请求路径为api目录下的请求不做限制,则可写为server{location/app{proxy_passhttp://192.168.1.111:8095/app;limit_connconn20;limit_rate500k;limit_reqzone=fooburst=5nodelay;}location/app/api{proxy_passhttp://192.168.1.111:8095/app/api}}#因nginx会优先进行精准匹
基于nginx反向代理如何获取用户真实Ip地址May 13, 2023 pm 05:07 PM引言nginx做反向代理时,默认的配置后端获取到的Ip地址都来自于nginx,用request.getRemoteAddr();获取到的是nginx的ip地址,而不是用户的真实ip.1.修改Nginx配置:server{listen80;server_namejenkins.local.com;location/{proxy_set_headerHost$host;proxy_set_headerX-Real-IP$remote_addr;proxy_passhttp://192.168.10.
本机ip地址查询Jan 05, 2024 pm 01:42 PM本机ip地址查询的方法有:1、 Windows系统下,打开“开始菜单”并搜索“cmd”打开命令提示符,输入“ipconfig”,然后按回车键,查找名为“IPv4 地址”的一行,其旁边的数字就是本机的IP地址;2、macOS系统下,点击屏幕左上角的苹果图标,选择“系统偏好设置”,在“网络”选项中找到当前连接的网络,点击“高级”按钮,在“TCP/IP”选项卡中查找本机的IP等等。
wifi显示无ip分配怎么办Aug 30, 2023 am 11:58 AMwifi显示无ip分配的解决办法:1、重新启动设备和路由器,关闭设备上的Wi-Fi连接,关闭设备,关闭路由器,等待几分钟,然后重新打开路由器链接wifi;2、检查路由器设置,重启DHCP,确保DHCP功能已经启用;3、重置网络设置,将删除所有已保存的WiFi网络和密码,在执行此操作之前,请确保已备份;4、更新路由器固件,登录路由器管理界面,查找固件更新选项,并按照提示进行操作。
IP是什么意思呢Jan 05, 2024 pm 01:34 PMIP常见的含义有“IP地址”、“知识产权”、“独特卖点”和“独立性”四种:1、IP地址,是计算机网络中用于标识和定位设备的数字标识;2、知识产权,指人们的智力创造成果所享有的权益,包括专利、商标、版权和商业秘密等;3、独特卖点,是产品或服务的独特特点,使其与竞争对手区分开来并吸引顾客;4、独立性,指一个国家或地区拥有自主决策和自我管理的能力,不受外部控制或干涉。
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
PhpStorm Mac version
The latest (2018.2.1) professional PHP integrated development tool
Atom editor mac version download
The most popular open source editor
SublimeText3 Linux new version
SublimeText3 Linux latest version
ZendStudio 13.5.1 Mac
Powerful PHP integrated development environment
mPDF
mPDF is a PHP library that can generate PDF files from UTF-8 encoded HTML. The original author, Ian Back, wrote mPDF to output PDF files "on the fly" from his website and handle different languages. It is slower than original scripts like HTML2FPDF and produces larger files when using Unicode fonts, but supports CSS styles etc. and has a lot of enhancements. Supports almost all languages, including RTL (Arabic and Hebrew) and CJK (Chinese, Japanese and Korean). Supports nested block-level elements (such as P, DIV),
