I use Full strict SSL. I’m not sure if the Cloudflare credentials are properly propagated to Caddy which I have running as a systemd service on Ubuntu…but that’s another issue I should try to get clarified in a separate thread.
I have set the following for gastrosoftware.ch:
A record gastrosoftware.ch points to the Caddy server with automatic TTL, Status DNS and HTTP Proxy
CNAME record www as an alias for gastrosoftware.ch also with automatic TTL, Status DNS and HTTP Proxy
Any other requests to the location gastrosoftware are not legit anyway.
But to understand you correctly, twanda.ch is another location which is not related to the other and therefore might well be served by Caddy on the same instance as it has specified a different X-Forwardefd-For-Header?
It did never work if I remember it correctly, so I have realip commented out at the moment.
header_upstream isn’t a global directive. It will only work on requests that match the proxy it’s configured for. In your example Caddyfile, only gastrosoftware.ch, www.gastrosoftware.ch are set up this way.
You have not included a header_upstream directive in the www.twanda.ch, www.twanda.com, www.twanda.twanda.ch, twanda.twanda.ch block, so there will not be any header overrides (other than those specified by the transparent preset).
OK, understood. So in that case I should at least see the proper visitor IP for twanda.ch in my Odoo logs, right? But this is not the case. In my Odoo logs I only see the local IP address of the Caddy server for all locations, Cloudflare or not.
It used to work before as I had Caddy and Odoo installed on the same server, but it does not anymore since I have installed Caddy on a dedicated server in my LAN.
IP workarounds are definitely enabled in your Odoo configuration?
From your example Caddyfile, twanda.ch proxy backend will receive an X-Forwarded-For header (courtesy of the transparent preset), and if IP workarounds are enabled, Odoo should be using it.
If I understand it correcly, this is done be setting proxy_mode = True in the Odoo configuration file (Odoo uses werkzeug) and that’s what I have done.
Can it be something with the local net? My servers are in a virtual private cloud on amazon in 2 different subnets.
Ehh, it was a long shot anyway. I only found one source that suggested it, not official. Figured it was worth a shot. The --proxy-mode parameter is one official method, though, as far as I can tell. I have to apologise as I’m not familiar with the software.
I’m afraid I’m out of ideas after that point. Might be worth swapping in Apache or nginx with one of the example configs people have posted for Odoo and see if the problem persists, to try and eliminate or narrow it down to a Caddy-specific problem.
Sorry for the late response, but as an active member of www.vikinger.ch I was busy casting out wintertime
Is there a way to see/log what caddy forwards to the backend?
