{"id":1014,"date":"2024-05-25T09:53:38","date_gmt":"2024-05-25T09:53:38","guid":{"rendered":"https:\/\/www.appfinz.com\/blogs\/?p=1014"},"modified":"2025-05-15T05:03:26","modified_gmt":"2025-05-15T05:03:26","slug":"cloudflare-and-logging-visitor-ip-addresses-via-in-php","status":"publish","type":"post","link":"https:\/\/www.appfinz.com\/blogs\/cloudflare-and-logging-visitor-ip-addresses-via-in-php\/","title":{"rendered":"CloudFlare and logging visitor IP addresses via in PHP"},"content":{"rendered":"\n

CloudFlare has released a module mod_cloudflare<\/code> for apache, the module will log and display the actual visitor IP Addresses rather than those accessed by cloudflare! https:\/\/www.cloudflare.com\/resources-downloads#mod_cloudflare<\/a> (Answer by: olimortimer<\/a>)<\/p>\n\n\n\n

If you dont have access to the apache runtime you can use the script below, this will allow you to check if the connection was through cloudflare and get the users ip.<\/em><\/strong><\/p>\n\n\n\n

I am rewriting my answer i used for another question “CloudFlare DNS \/ direct IP identifier<\/a>“<\/p>\n\n\n\n

Cloudflare’s ips are stored in public so you can go view them here<\/a> then check if the ip is from cloudflare (this will allow us to get the real ip from the http header HTTP_CF_CONNECTING_IP<\/code>).<\/p>\n\n\n\n

If you are using this to disable all non cf connections or vice versa, i recommend you to have a single php script file that gets called before every other script such as a common.php or pagestart.php etc.<\/p>\n\n\n\n

function ip_in_range($ip, $range) {\n    if (strpos($range, '\/') == false)\n        $range .= '\/32';\n\n    \/\/ $range is in IP\/CIDR format eg 127.0.0.1\/24\n    list($range, $netmask) = explode('\/', $range, 2);\n    $range_decimal = ip2long($range);\n    $ip_decimal = ip2long($ip);\n    $wildcard_decimal = pow(2, (32 - $netmask)) - 1;\n    $netmask_decimal = ~ $wildcard_decimal;\n    return (($ip_decimal & $netmask_decimal) == ($range_decimal & $netmask_decimal));\n}\n\nfunction _cloudflare_CheckIP($ip) {\n    $cf_ips = array(\n        '199.27.128.0\/21',\n        '173.245.48.0\/20',\n        '103.21.244.0\/22',\n        '103.22.200.0\/22',\n        '103.31.4.0\/22',\n        '141.101.64.0\/18',\n        '108.162.192.0\/18',\n        '190.93.240.0\/20',\n        '188.114.96.0\/20',\n        '197.234.240.0\/22',\n        '198.41.128.0\/17',\n        '162.158.0.0\/15',\n        '104.16.0.0\/12',\n    );\n    $is_cf_ip = false;\n    foreach ($cf_ips as $cf_ip) {\n        if (ip_in_range($ip, $cf_ip)) {\n            $is_cf_ip = true;\n            break;\n        }\n    } return $is_cf_ip;\n}\n\nfunction _cloudflare_Requests_Check() {\n    $flag = true;\n\n    if(!isset($_SERVER['HTTP_CF_CONNECTING_IP']))   $flag = false;\n    if(!isset($_SERVER['HTTP_CF_IPCOUNTRY']))       $flag = false;\n    if(!isset($_SERVER['HTTP_CF_RAY']))             $flag = false;\n    if(!isset($_SERVER['HTTP_CF_VISITOR']))         $flag = false;\n    return $flag;\n}\n\nfunction isCloudflare() {\n    $ipCheck        = _cloudflare_CheckIP($_SERVER['REMOTE_ADDR']);\n    $requestCheck   = _cloudflare_Requests_Check();\n    return ($ipCheck && $requestCheck);\n}\n\n\/\/ Use when handling ip's\nfunction getRequestIP() {\n    $check = isCloudflare();\n\n    if($check) {\n        return $_SERVER['HTTP_CF_CONNECTING_IP'];\n    } else {\n        return $_SERVER['REMOTE_ADDR'];\n    }\n}<\/pre><\/div>\n\n\n\n
To use the script it’s quite simple:<\/p>\n\n\n\n
$ip = getRequestIP();\n$cf = isCloudflare();\n\nif($cf) echo "Connection is through cloudflare: <br>";\nelse    echo "Connection is not through cloudflare: <br>";\n\necho "Your actual ip address is: ". $ip;\necho "The server remote address header is: ". $_SERVER['REMOTE_ADDR'];<\/pre><\/div>\n\n\n\n
This script will show you the real ip address and if the request is CF or not!<\/p>\n\n\n\n
If you\u2019re planning to revamp your online presence, don\u2019t miss exploring our\u00a0website designing services<\/strong><\/a>\u00a0and custom\u00a0website development<\/a><\/strong>\u00a0solutions tailored to your business needs.<\/p>\n\n\n\n
<\/p>\n","protected":false},"excerpt":{"rendered":"
CloudFlare has released a module mod_cloudflare for apache, the module will log and display the actual visitor<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-1014","post","type-post","status-publish","format-standard","hentry","category-php"],"_links":{"self":[{"href":"https:\/\/www.appfinz.com\/blogs\/wp-json\/wp\/v2\/posts\/1014","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.appfinz.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.appfinz.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.appfinz.com\/blogs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.appfinz.com\/blogs\/wp-json\/wp\/v2\/comments?post=1014"}],"version-history":[{"count":2,"href":"https:\/\/www.appfinz.com\/blogs\/wp-json\/wp\/v2\/posts\/1014\/revisions"}],"predecessor-version":[{"id":1370,"href":"https:\/\/www.appfinz.com\/blogs\/wp-json\/wp\/v2\/posts\/1014\/revisions\/1370"}],"wp:attachment":[{"href":"https:\/\/www.appfinz.com\/blogs\/wp-json\/wp\/v2\/media?parent=1014"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.appfinz.com\/blogs\/wp-json\/wp\/v2\/categories?post=1014"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.appfinz.com\/blogs\/wp-json\/wp\/v2\/tags?post=1014"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}