Security: Apache Reverse Proxy, fail2ban, rsyslog, forwarding public IP
What do all these have in common? SECURITY! When you run multiple websites and you want to split those off to different computers or containers for the purpose of security or load balancing you need to run a reverse proxy. Apache has a mod for that. The problem is that this mod does not forward the actual IP of the computer visiting the site, instead it sends to the container/computer (let's call them "containers" from this point forward) the IP of the reverse proxy. This means you can't use fail2ban to scan the logs to block bad actors. BIG SECURITY ISSUE HERE. In order to scan for bad actors you use fail2ban. It has jails that look for specific types of activity such as failed login attempts. If it finds…