From: Remi Gacogne Date: Mon, 16 Mar 2020 10:31:59 +0000 (+0100) Subject: rec: Clarify the behavior of the Proxy Protocol feature X-Git-Tag: dnsdist-1.5.0-alpha1~12^2 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=refs%2Fpull%2F8874%2Fhead;p=thirdparty%2Fpdns.git rec: Clarify the behavior of the Proxy Protocol feature Co-Authored-By: Otto Moerbeek --- diff --git a/pdns/recursordist/docs/settings.rst b/pdns/recursordist/docs/settings.rst index 3c1ec00311..fffda3d167 100644 --- a/pdns/recursordist/docs/settings.rst +++ b/pdns/recursordist/docs/settings.rst @@ -1240,7 +1240,7 @@ Whether to compute the latency of responses in protobuf messages using the times Ranges that are required to send a Proxy Protocol header in front of UDP and TCP queries, to pass the original source and destination addresses and ports to the recursor, as well as custom values. Queries that are not prefixed with such a header will not be accepted from clients in these ranges. Queries prefixed by headers from clients that are not listed in these ranges will be dropped. -Note that once a Proxy Protocol header has been received, the original source address will be checked against the `allow-from`_ ACL, instead of the address of the proxy. +Note that once a Proxy Protocol header has been received, the source address from the proxy header instead of the address of the proxy will be checked against the `allow-from`_ ACL, .. _setting-proxy-protocol-maximum-size: