today I came a across a pretty strange behaviour of an php based application of mine.
In a certain part of the system there’s an UI making use of AJAX-calls to fill list
boxes with content from the backend.

Now, the AJAX listener performs a security check on all incoming requests, making sure
that only valid client IPs get responses. The valid IP are stored in the backend too.

To get the client’s IP I used plain old

$_SERVER['REMOTE_ADDR']

which works out for most of the clients. Today I ran into an installation where
remote_addr contained the IP of an network adapter which was’nt that one which performed
the actual communication for my application.

Googling around agve me Roshan’s Blog entry on the topuic:

function getRealIpAddr()
{
    if (!empty($_SERVER['HTTP_CLIENT_IP']))   //check ip from share internet
    {
      $ip=$_SERVER['HTTP_CLIENT_IP'];
    }
    elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR']))//check ip is pass from prxy
    {
      $ip=$_SERVER['HTTP_X_FORWARDED_FOR'];
    }
    else
    {
      $ip=$_SERVER['REMOTE_ADDR'];
    }
    return $ip;
}

Sadly the problem persists.

Did anybody ever stumble into this sort of problem (actually I don’t think that I discovered a completly new issue ^^) and has an idea for me how to fix this?

EDIT:

I’m on

• PHP Version 5.2.9-1
• Apache/2.2.9 (Win32)

The communication is done via a regular LAN card. Now the actuall client has several
devices more. VMNet adapters and such.

I’m wondering how a client configuration can ‘disturb’ a web server that much…

TIA

K