IP identification does not work correctly with Cloudflare

  • When using tools to check my server IPs with Identify Server IPs, it does not work properly and gives me a very long error:

    Invalid IP returned: <!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta name="robots" content="noindex,nofollow"><meta name="viewport" content="width=device-width,initial-scale=1"><link href="/cdn-cgi/styles/challenges.css" rel="stylesheet"><meta http-equiv="refresh" content="375"></head><body class="no-js"><div class="main-wrapper" role="main"><div class="main-content"><noscript><div id="challenge-error-title"><div class="h2"><span class="icon-wrapper"><div class="heading-icon warning-icon"></div></span><span id="challenge-error-text">Enable JavaScript and cookies to continue</span></div></div></noscript></div></div><script>(function(){window._cf_chl_opt={cvId: '2',cZone: "ayntk-cybersecurity.com",cType: 'managed',cNounce: '3239',cRay: '832da33fad942bdf',cHash: '8d4d79f38dee6d7',cUPMDTk: "\/wp-admin\/admin-post.php?__cf_chl_tk=wBGeWk9Pr6hWIQIv3T20FHm2aqUTcwdy19RKfMtA6Eg-1702128993-0-gaNycGzNCzs",cFPWv: 'b',cTTimeMs: '1000',cMTimeMs: '375000',cTplV: 5,cTplB: 'cf',cK: "visitor-time",fa: "\/wp-admin\/admin-post.php?__cf_chl_f_tk=wBGeWk9Pr6hWIQIv3T20FHm2aqUTcwdy19RKfMtA6Eg-1702128993-0-gaNycGzNCzs",md: "s9ewxugCDSMU31RDofwYFoEP1N11pRyyfLwEycpqL_s-1702128993-0-AcmfYMTZhFzMhISq9G-J50ptG78cBipgX3m6RIFZnOU9NEuVBjmB7iaVjOubIozgP60Il7amjtifSs40y-6Lf99DXy9i1Dxt9JFa0fBX_YEd0qf-7zQNOHdDBwXCWpBOV9AkzWRlFTIlnrMS5_Dym1VnqHoBvnZP4ltMATeDI3N606yZdOyDE6YtSLCD4zrUytl3m5tbhVBYZswZHegqZbb7uWSFqNq4eQNwMVEaMEExLtg6UE1YWS-AMAKg2Hk9P2NB9fahmoRNhjICMLMvaPM5eA1f2A5Yb3p1QNOYkkLWy1yrhXIvIYuX_jqkHwVO4rpwqG2PxXdRr0f8WfTuMdliSUeQRNo4q1HQgiRGaIl_qtRDW4Jjgs0eWuG12-TMeRePXTkKNcTPEieMz-3sa4iNqib_n1B9PdHmEdB6CN1kkVnQuPpNlZbESF9a_gu65sFY0OEt0OV3x-JzijgBpO1ZfrxRpTsY-1MqCTSooVvIDAlzdfJBf-Tq857W9CzyzdJRSjENqqJaN77sUHTJAc-E3GAXYUNd3xEAj5BF3-6cVivaLEDPbB70H7CD7nYnWRPVZ9IqKo8Fgi4d0lYtlEqnxxAehVO8Kz5xxcAN9vWrU9Q3c4mNdoKBhT22eyrTGhgbV-xMUQ4FiYYR08y7mwmsDHNfaYUCCzIYZcn4KcLcEX9Dp73Y4jbXhGtmo_SxqAcyVhp_sNwYxqyQRt7akRfv20YnbE93j5x1UrQjZUFJ1GOffQGM32-UZ2C6MjBrXJQXhx1cMxkdHmkNiyj8RzDVKbXEyII2FiTnoqjA7RP-daf-BJTh7koHZ8K8D7uiBhONSn2ByGMgI5sU6oQGo1YtfhVqy2RT4tUEFOiJXTANbFPoaye5QHIrs8ymd2-Fty4SDC31BvcWBlWj-unwfBI7wsw3BTPFcGg8BdkWTrHZyGPeIvSMhl5iGjfsSXZ3jmpxyfdMyOiMTGBhemhZZ1vNIchbn9yYno8XqQtnelNN0Yef8oqNyeN7fZ6xJdC6OirDjOf1fUOzjj7w6QBC_qYmuYVMf6bcOS70nCC055F2i1HGxtqOLlDmL1tiEqQa_9zJNv9Kw-jKjJGsXvUWgLBlitk-ozWdQlnmbn7rXCsuZuO_D3cXVX9llzRpYDI0sT6zEbB3UzrS1zzBzggNqiYLRVEAw-4o_AFvjLm3rs86EccqdDuWatWhD2EVl9tgzhtmhCnHpyVNVaD-IJWJZJkodPZjq1nshPg_fbLE2XIZsBPxKrvUil7mWu3yk2qhxHVt5dANC-Fv6cYdktn6c5gHqmy8aBkj1Oh-NtZtkoIEOh3MtX8J5NzdW_BMGCzwjT4a1zBNA4zyTfiLeh-94SJzdOJ6KdYfUjJq_4TwVQ89eC8QcpEzP9jFT4zxrAm-CyIwSuHaNeZ62L7t2xNFvUkj2Mpb8wn8Dy8F598V0d8m0Z9wQ86iKiNw7Z1P1r26RrrsSziOUrA9togS3OROmLAtGZs9GZTCni5Sqpi_NQN5BGBnbQcLLX1eSnJCWL8ZVVpohpqG_WL3R3VVOsdFXqz64RvERVckRV-mLZ0ozHpFk0379cPAh6_HqDnYfJFZ9it9RoGJADN16p8z-uKJgBVHuDhGktnRt7xlgeaaQtV1suTMMako4W1pQ9bvPz_bz5ld8HHkDauteWnjk76VPOy4ze6Eqz0NaqUQUVyG9wPJ2ow_txpHZw0p9ydVmirp0qiB8cdTNnudja8PbqnqjXiW4jNuC1J63hL5LO_MFM7sD0yon9KUQwKOPKBGVPngBG0wnvEt0RjdNddXqt0fFxbnk1BXMTo_o1XZj6YM1N3EzJpG0SpvQY6iirULdODdIriE89x8K9PMNolZxZMZd44ES5OsqnDteCNGa7yBDiWLapV530EyyRklNBisXhymLF8ktsQn6L7EGG6qMbLCpuEU62x4JC1xXInBc9dd6skCh8v80a61VxohTpPGPWipJLKJJEBSRhFolBVJ-D0yy8l4vDqPjot61wWhFC4Y928L84tVN08hhdRKxDGszZgZIY8TLARi019wFT5Wy3BTvGD7BY6_1ctVOetCvX0SbYcpt1jWzHUsdV9SV4A11WtgvJ3F2h56RP2ByjSGTChxKkFeilEYPCGSem5hDMGPxKaIGuaOXglOv_2fBWUvwdj8iJwV6G1bPFS8xkWcOgFBt8SLB5lBA2yadSCH80RPTnbkAk36YOI15OXp8XmcLbc_0ssRVwplEPFnSKW5oQAKwJ9LVM4HDy_IRyE4SLbhGIP92OPrhTBXxk5lBd9JCRdcx668HnwV00JvSj2PER6NC8vIGkUBXnHbWJXAxs2gsRCtrP25a6QwwYn5yi33oOKpPQLXi9nsXoPPPgK2DdDODxGfL2aKrn31BCL6P97C2vd-ET9pIj66DVsXPxdTUztOFBNNsN6Y76Tu2jFxkpo0-HxrYL_gGtxnR_sw8qHsTI3pMYfLyrFhzYvdEEpZ4W78cCwZnpoQGynGgW6thsFUGf0EgP7eC2mzJGMI5DmQXO3iGY6O2Xrk64Ms_jRQDuJGhlVfvXHdYrXZ4aWvOXry39nxp2IHkplTWxiiFbCq5kQ_g9GOYFoB7K5gcmCFl7gZQGvdJf3EZjFpSL3-SiJLzmp3hMaGzpJblKkOqGVQqXvO6gKJfJmshKKVWWDCqnWpEWOqtLvKo9YkkBO0f4QuUTgupgEKIoEokRUccE-sHJZ0wATFw6dYDhvGodiRAy_ofPoz_NiMHneKaAOuqpG-Ks1v6QWBpzqL8YDJE6N7WwsT7ijuZsVy8NSua7GkVGs7Xg",cRq: {ru: 'aHR0cHM6Ly9heW50ay1jeWJlcnNlY3VyaXR5LmNvbS93cC1hZG1pbi9hZG1pbi1wb3N0LnBocA==',ra: 'V29yZFByZXNzLzYuNC4yOyBodHRwczovL2F5bnRrLWN5YmVyc2VjdXJpdHkuY29t',rm: 'UE9TVA==',d: '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',t: 'MTcwMjEyODk5My4yMjgwMDA=',cT: Math.floor(Date.now() / 1000),m: '0351xUlNICd6nnf60jmIJ7W74uotC0MdeggJorsebLQ=',i1: 'wJ13J5Xx3Fpt9WZx1SXy5g==',i2: 'r0qqKZ+pW6KBtx5hpafUkg==',zh: 'RLJaf44IGJrQBFkcLkNtWsLCg8Q47RiBgHzznBBQiZ0=',uh: 'WJOU2CMyQ9jMAGGed24wxIPbNGCmKcHySrW/GVbp0Ic=',hh: 'yPMbGx66gYzt1f/Ub3Wyfxr8MwVgpBgZTwwKzDZTP88=',}};var cpo = document.createElement('script');cpo.src = '/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=832da33fad942bdf';window._cf_chl_opt.cOgUHash = location.hash === '' && location.href.indexOf('#') !== -1 ? '#' : location.hash;window._cf_chl_opt.cOgUQuery = location.search === '' && location.href.slice(0, location.href.length - window._cf_chl_opt.cOgUHash.length).indexOf('?') !== -1 ? '?' : location.search;if (window.history && window.history.replaceState) {var ogU = location.pathname + window._cf_chl_opt.cOgUQuery + window._cf_chl_opt.cOgUHash;history.replaceState(null, null, "\/wp-admin\/admin-post.php?__cf_chl_rt_tk=wBGeWk9Pr6hWIQIv3T20FHm2aqUTcwdy19RKfMtA6Eg-1702128993-0-gaNycGzNCzs" + window._cf_chl_opt.cOgUHash);cpo.onload = function() {history.replaceState(null, null, ogU);}}document.getElementsByTagName('head')[0].appendChild(cpo);}());</script><script defer src="https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317" integrity="sha512-euoFGowhlaLqXsPWQ48qSkBSCFs3DPRyiwVu3FjR96cMPx+Fr+gpWRhIafcHwqwCqWS42RZhIudOvEI+Ckf6MA==" data-cf-beacon='{"rayId":"832da33fad942bdf","version":"2023.10.0","r":1,"token":"b3fe3ece1c164fe1a4ef8af95f37f699","b":1}' crossorigin="anonymous"></script> </body></html>

    I think this is due to cloudflare. How can I fix it?

Viewing 15 replies - 1 through 15 (of 16 total)

  • Hi, @ayntk,

    Try this. Navigate to Security > Settings ( > Global Settings). Scroll down to the IP Detection section. If not already, change PROXY DETECTION to Manual and PROXY HEADER to CF-Connecting-IP. Does it now automatically show the correct IP in the UI? If so, click on the Save button (all the way at the bottom of the page).

    Now retry the Identify Server IPs tool.

    +++ To prevent any confusion, I’m not SolidWP +++

    Plugin Support chandelierrr

    (@shanedelierrr)

    Hi there,?

    Checking in here to make sure you’re all set! I hope you found the previous reply helpful and it helped resolve the issue.

    Tracking notifications on this forum can become tricky over time, and since we haven’t received a response, I’ll mark this post resolved.

    If you still require further assistance, feel free to open a new support topic, and we’d be happy to assist.

    Thank you.

    Thread Starter ayntk

    (@ayntk)

    I tried all the settings in the manual section and none of them seemed to work. I always get the yellow error (copied in my first reply) and the green one above, I get this: a check mark in green and then a list of IPs: Identified server IPs: “XX”, “XX, “XX”, “XX” und “XX”. But the error is still there.

    Plugin Support chandelierrr

    (@shanedelierrr)

    Hi @ayntk. I see. It could be that the loopback request made the plugin is being redirected. You can use this command to check: curl -d 'action=itsec-check-loopback' -i https://yoursite.com/wp-admin/admin-post.php, and the location should show the same URL (admin-post.php).

    Please check that your server supports?loopback requests?and isn’t redirecting them. Try also adding your loopback IP to the Authorized Hosts List in the Security Global Settings. –?What Does It Mean When An Invalid IP Is Returned Error In The Security Check?

    Please also make sure that Cloudflare and your server aren’t blocking requests made by the plugin. You can check the Site Scanner’s IP here.

    Hope this helps!

    Thread Starter ayntk

    (@ayntk)

    curl -d ‘action=itsec-check-loopback’ -i https://yoursite.com/wp-admin/admin-post.php -> When I execute this, it returns a huge list of things, including the error. And when I check the loopbacks it says

    Loopback requests are used to execute scheduled events and are also used by the built-in editors for themes and plugins to check the stability of the code.

    The loopback request returned an unexpected http status code, 403, it was not possible to determine if this was preventing functions from working as expected.
    -> But I think this is normal because I use a server corn job to schedule my wp-cron.php

    Plugin Support chandelierrr

    (@shanedelierrr)

    @ayntk thanks for looking into this!

    When I try that command, the “location” is returning /account/ URL instead of the admin-post.php, so the loopback request is being redirected causing the Invalid IP error. Have you tried checking this with your host, too? If so, please let us know their response. Have you added your loopback IP to the Authorized Hosts List?

    Please confirm that both your Cloudflare and hosting configurations aren’t blocking the requests from Solid Security. Please whitelist the plugin’s scanner IP in CF and your server, just in case.

    Looking forward to your update.

    Thread Starter ayntk

    (@ayntk)

    I have whitelisted your plugins security scanner IP, what exactly is my loopback IP, is this my server IP?
    I host it myself, so I cannot contact my host.

    Plugin Support chandelierrr

    (@shanedelierrr)

    Hi @ayntk, I’ve reached out to our dev team for further clarification on this particular issue, and I’ll get back to you as soon as I receive feedback.

    Please note that due to the ongoing holiday season, there may be a delay in getting their response, and we appreciate your kind understanding.

    Thread Starter ayntk

    (@ayntk)

    I have also asked the community of my hosting panel and they allow and use CF-Connecting IP. So this cannot be the problem.

    Plugin Support chandelierrr

    (@shanedelierrr)

    I understand. I’ve added this information to the internal ticket so our team will know.

    Thank you for your patience!

    Plugin Support Ben Meredith

    (@benmeredithgmailcom)

    Hey @ayntk! I spoke with our lead developer and he says the fix here is to “allowlist” your server’s IP address in Cloudflare. Here’s the docs I found for that on CloudFlare’s side:

    https://developers.cloudflare.com/ddos-protection/tcp-protection/how-to/add-prefix-allowlist/

    Once you do that, you should be good to go.

    Thread Starter ayntk

    (@ayntk)

    Thank you, that does not seem to work. I do not have access to such a setting in Cloudflare. Could you perhaps share a screenshot of how you have done it as it does not appear for me like described in the article. I only habe rules, and WAF rules do I have to add it there and skip a specific component or what exactly do I need to skip for solid security to work?

    Plugin Support Ben Meredith

    (@benmeredithgmailcom)

    Hey @ayntk

    I don’t have an account to reference, no.

    The support at Cloudflare ought to be able to help with this. I wish I could point you to the solution, but if their docs are not matching up with your account, that’s something they will need to assist with. This is unambiguously something wrong on your Cloudflare account, and therefore something that we can’t assist with.

    Thanks!

    Thread Starter ayntk

    (@ayntk)

    I spoke to support and now my server IPs are allowlisted, now when I run Identify Server IPs it does not load at all -> so no response at all just endlessly loading.

    So I guess it is not working?

    Strangely, as soon as I password protect my site (hole site) it works again with detection and the error is still there with password protection (normally password protection is off so this makes no sense).

    If I remove the IPs from the allowlist in cf, the error comes back -> but at least the identifying scan works.

    Thread Starter ayntk

    (@ayntk)

    I did some more testing and was able to pinpoint the problem:
    When I add the IPv4 to cf the detection in Solid Security works -> Still with error sadly.

    As soon as I add the IPv6 of my server to cf, Solid Security detection stops working (I added the exact IP and tested it with the range -> no luck on both) –> So the Identify Server IP scanner seems to have a problem if the IPv6 address is allowlisted in cf -> maybe if you can fix this, the problem is solved (when the scanner works, the error might be gone if we are lucky).

    EDIT: Once I enabled password protection in Admin and Site Enhancements, the scan works again -> with the error

    • This reply was modified 10 months, 3 weeks ago by ayntk. Reason: Scan works again and error is back
    • This reply was modified 10 months, 3 weeks ago by ayntk. Reason: Never Mind Scan does not work -> Password Protection caused it
Viewing 15 replies - 1 through 15 (of 16 total)
  • The topic ‘IP identification does not work correctly with Cloudflare’ is closed to new replies.