Source IP Spoofing

[Max DiOrio]

Hi,

We utilize CloudFlare zero trust with cloudflared.  In the HA setup, we have multiple cloudflared tunnels deployed, so the client connection can jump beteween endpoint IP's.

This is a problem, WebADM detects an IP jump as spoofing and kills the connection.

Source IP spoofing detected (untrusted IP 10.XX.XXX.33)

Is there a way to prevent the spoofing check, or allow specific IP ranges?

Thanks.

Max

[Yoann Traut (RCDevs)]

Hello, 

In /opt/webadm/conf/webadm.conf, there is the following setting which can be enabled/disabled:

ip_spoofing no

Regards