代理ip
Variable Value
DOCUMENT_ROOT /data1/apache/sso/htdocs/
HTTP_ACCEPT */*
HTTP_ACCEPT_ENCODING gzip, deflate
HTTP_ACCEPT_LANGUAGE zh-cn
HTTP_CONNECTION close
HTTP_HOST 123.103.65.99
HTTP_MAX_FORWARDS 10
HTTP_UA_CPU x86
HTTP_USER_AGENT Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; TencentTraveler )
HTTP_X_FORWARDED_FOR 10.218.19.130 // 最终的客户端ip
HTTP_X_FORWARDED_HOST ljj.com
HTTP_X_FORWARDED_SERVER ljj.com
HTTP_X_REAL_IP 10.218.19.94 // 代理的ip
PATH /usr/kerberos/sbin:/usr/kerberos/bin:/usr/bin:/bin:/usr/sbin:/sbin:/usr/local/bin:/usr/home/junjie2/bin
REMOTE_ADDR 61.135.152.194 // 代理的出口ip
REMOTE_PORT 43217
SERVER_ADDR 123.103.65.99 // 最终访问的apache服务器的ip
SERVER_PORT 80
SERVER_SIGNATURE <ADDRESS>Apache/1.3.33 Server at login.sina.com.cn:80 Port 80</ADDRESS>
SERVER_SOFTWARE Apache/1.3.33 (Unix) PHP/5.1.5 mod_ssl/2.8.24 OpenSSL/0.9.8d
GATEWAY_INTERFACE CGI/1.1
SERVER_PROTOCOL HTTP/1.0
REQUEST_METHOD GET
QUERY_STRING no value
REQUEST_URI /sso/phpinfo.php
SCRIPT_NAME /sso/phpinfo.php
下面解释一下上面ip的含义:
10.218.19.130 -> 10.218.19.94 -> 123.103.65.99
10.218.19.120 通过代理服务器10.218.19.94访问123.103.65.99 ,服务器正真做tcp连接的server是61.135.152.194,是代理服务器的出口ip,也只有这一个ip是无法伪造的,其它的以HTTP开头的ip都是从http协议头里取的,都是可以伪造的。客户端到服务器中间经过了两次代理 访问的是 10.218.19.94:80 -> 10.218.94.80:81 -> 123.103.65.99