starred/nginx-proxy-manager-NginxProxyManager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2026-04-25 09:25:55 +03:00
Code Issues 937 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #873] Access list didn't work #740

New issue
Closed
opened 2026-02-26 06:34:13 +03:00 by kerem · 4 comments
kerem commented 2026-02-26 06:34:13 +03:00
Owner
Copy link

Originally created by @dartymath on GitHub (Feb 7, 2021).
Original GitHub issue: https://github.com/NginxProxyManager/nginx-proxy-manager/issues/873

Checklist

  • Have you pulled and found the error with jc21/nginx-proxy-manager:latest docker image?
  • Are you sure you're not using someone else's docker image?
  • If having problems with Lets Encrypt, have you made absolutely sure your site is accessible from outside of your network?

Yes is the last docker jc21/nginx-proxy-manager:latest 2.7.3
Issue on Access List more precisely the client ip address is not good : always 172.18.0.1 (gateway on docker)

Describe the bug

  • A clear and concise description of what the bug is.
  • What version of Nginx Proxy Manager is reported on the login page?

Version 2.7.3 lastest ! when using access list -> always 403 Forbidden reach !
on the log file of the concern proxy host i can find that the ip client address register is in fact the gateway of the container 172.18.0.1 and not the real address of the client -> normal it doesn't work.
This Client address is obtain on both for Internal client requery of external with 4G mobile phone
I try different advanced option report on other issues "Nginx PM not recognizing my actual IP I am connecting with, but rather a Cloudflare IP. #811" and "IP address - Docker #112" without success

Can you help me please

To Reproduce
Steps to reproduce the behavior:

  1. Go to '...'
  2. Click on '....'
  3. Scroll down to '....'
  4. See error

[07/Feb/2021:16:11:33 +0000] - - 403 - GET https morse.xx-xx.fr "/" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "http://192.168.0.19:281/"
[07/Feb/2021:16:11:33 +0000] - - 403 - GET https morse.xx-xx.fr "/favicon.ico" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "https://morse.xx-xx.fr/"
[07/Feb/2021:16:12:51 +0000] - - 403 - GET https morse.xx-xx.fr "/" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "http://192.168.0.19:281/"
[07/Feb/2021:16:12:51 +0000] - - 403 - GET https morse.xx-xx.fr "/favicon.ico" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "https://morse.xx-xx.fr/"
[07/Feb/2021:16:15:26 +0000] - - 403 - GET https morse.xx-xx.fr "/" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "http://192.168.0.19:281/"
[07/Feb/2021:16:15:26 +0000] - - 403 - GET https morse.xx-xx.fr "/favicon.ico" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "https://morse.xx-xx.fr/"
[07/Feb/2021:16:17:30 +0000] - - 403 - GET https morse.xx-xx.fr "/" [Client 172.18.0.1] [Length 171] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Linux; Android 10; SM-G973F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.152 Mobile Safari/537.36" "-"
[07/Feb/2021:16:17:30 +0000] - - 403 - GET https morse.xx-xx.fr "/favicon.ico" [Client 172.18.0.1] [Length 171] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Linux; Android 10; SM-G973F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.152 Mobile Safari/537.36" "https://morse.xx-xx.fr/"
[07/Feb/2021:16:17:34 +0000] - - 403 - GET https morse.xx-xx.fr "/" [Client 172.18.0.1] [Length 171] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Linux; Android 10; SM-G973F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.152 Mobile Safari/537.36" "-"
[07/Feb/2021:16:17:35 +0000] - - 403 - GET https morse.xx-xx.fr "/favicon.ico" [Client 172.18.0.1] [Length 171] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Linux; Android 10; SM-G973F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.152 Mobile Safari/537.36" "https://morse.xx-xx.fr/"

Expected behavior
A clear and concise description of what you expected to happen.

Screenshots
If applicable, add screenshots to help explain your problem.
access list
log
log2

Operating System

  • Please specify if using a Rpi, Mac, orchestration tool or any other setups that might affect the reproduction of this error.

Synolody DSM

Additional context
Add any other context about the problem here, docker version, browser version if applicable to the problem. Too much info is better than too little.

Originally created by @dartymath on GitHub (Feb 7, 2021). Original GitHub issue: https://github.com/NginxProxyManager/nginx-proxy-manager/issues/873 **Checklist** - Have you pulled and found the error with `jc21/nginx-proxy-manager:latest` docker image? - Are you sure you're not using someone else's docker image? - If having problems with Lets Encrypt, have you made absolutely sure your site is accessible from outside of your network? Yes is the last docker jc21/nginx-proxy-manager:latest 2.7.3 Issue on Access List more precisely the client ip address is not good : always 172.18.0.1 (gateway on docker) **Describe the bug** - A clear and concise description of what the bug is. - What version of Nginx Proxy Manager is reported on the login page? Version 2.7.3 lastest ! when using access list -> always 403 Forbidden reach ! on the log file of the concern proxy host i can find that the ip client address register is in fact the gateway of the container 172.18.0.1 and not the real address of the client -> normal it doesn't work. This Client address is obtain on both for Internal client requery of external with 4G mobile phone I try different advanced option report on other issues "Nginx PM not recognizing my actual IP I am connecting with, but rather a Cloudflare IP. #811" and "IP address - Docker #112" without success Can you help me please **To Reproduce** Steps to reproduce the behavior: 1. Go to '...' 2. Click on '....' 3. Scroll down to '....' 4. See error [07/Feb/2021:16:11:33 +0000] - - 403 - GET https morse.xx-xx.fr "/" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "http://192.168.0.19:281/" [07/Feb/2021:16:11:33 +0000] - - 403 - GET https morse.xx-xx.fr "/favicon.ico" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "https://morse.xx-xx.fr/" [07/Feb/2021:16:12:51 +0000] - - 403 - GET https morse.xx-xx.fr "/" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "http://192.168.0.19:281/" [07/Feb/2021:16:12:51 +0000] - - 403 - GET https morse.xx-xx.fr "/favicon.ico" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "https://morse.xx-xx.fr/" [07/Feb/2021:16:15:26 +0000] - - 403 - GET https morse.xx-xx.fr "/" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "http://192.168.0.19:281/" [07/Feb/2021:16:15:26 +0000] - - 403 - GET https morse.xx-xx.fr "/favicon.ico" [Client 172.18.0.1] [Length 182] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36" "https://morse.xx-xx.fr/" [07/Feb/2021:16:17:30 +0000] - - 403 - GET https morse.xx-xx.fr "/" [Client 172.18.0.1] [Length 171] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Linux; Android 10; SM-G973F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.152 Mobile Safari/537.36" "-" [07/Feb/2021:16:17:30 +0000] - - 403 - GET https morse.xx-xx.fr "/favicon.ico" [Client 172.18.0.1] [Length 171] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Linux; Android 10; SM-G973F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.152 Mobile Safari/537.36" "https://morse.xx-xx.fr/" [07/Feb/2021:16:17:34 +0000] - - 403 - GET https morse.xx-xx.fr "/" [Client 172.18.0.1] [Length 171] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Linux; Android 10; SM-G973F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.152 Mobile Safari/537.36" "-" [07/Feb/2021:16:17:35 +0000] - - 403 - GET https morse.xx-xx.fr "/favicon.ico" [Client 172.18.0.1] [Length 171] [Gzip 3.23] [Sent-to 192.168.0.19] "Mozilla/5.0 (Linux; Android 10; SM-G973F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.152 Mobile Safari/537.36" "https://morse.xx-xx.fr/" **Expected behavior** A clear and concise description of what you expected to happen. **Screenshots** If applicable, add screenshots to help explain your problem. ![access list](https://user-images.githubusercontent.com/65859148/107152832-77a9d200-696a-11eb-8a53-70d6a42d4f19.jpg) ![log](https://user-images.githubusercontent.com/65859148/107152835-7bd5ef80-696a-11eb-80dc-e6e22a2c3da1.jpg) ![log2](https://user-images.githubusercontent.com/65859148/107152836-7d071c80-696a-11eb-86d7-3b48766649a8.jpg) **Operating System** - Please specify if using a Rpi, Mac, orchestration tool or any other setups that might affect the reproduction of this error. Synolody DSM **Additional context** Add any other context about the problem here, docker version, browser version if applicable to the problem. Too much info is better than too little.
kerem 2026-02-26 06:34:13 +03:00
  • closed this issue
  • added the
    bug
         label
kerem commented 2026-02-26 06:34:13 +03:00
Author
Owner
Copy link

@dartymath commented on GitHub (Feb 7, 2021):

Just to precise, I have the same issue when I install Nginx Proxy Manager as addon in Home Assistant or with another docker jlesage/nginx-proxy-manager.
The issue seems to come froml the version 2.7.3

<!-- gh-comment-id:774714963 --> @dartymath commented on GitHub (Feb 7, 2021): Just to precise, I have the same issue when I install Nginx Proxy Manager as addon in Home Assistant or with another docker jlesage/nginx-proxy-manager. The issue seems to come froml the version 2.7.3
kerem commented 2026-02-26 06:34:13 +03:00
Author
Owner
Copy link

@christofkac commented on GitHub (Dec 30, 2021):

Hi,
I have a similar problem:
I want to access a Grafana dashboard which loads data from an influxdb.
Strangely, some data is read correctly and for some data I get the error 403 like in the post above.

Here some examples:

[29/Dec/2021:13:35:40 +0100] - - 403 - GET https gr.chrkac.com "/api/datasources/proxy/1/query?db=iobroker&q=SELECT%20mean(%22value%22)%20FROM%20%22javascript.0.HeizungHolland.Aussentemperatur%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22javascript.0.HeizungHolland.TemperaturIst%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22javascript.0.HeizungHolland.TemperaturSoll%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22javascript.0.HeizungHolland.BrennerAn%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(previous)&epoch=ms" [Client 192.168.188.20] [Length 171] [Gzip 3.23] [Sent-to 192.168.178.233] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" "https://gr.chrkac.com/d/ylJMgbXiz/iobroker?orgId=1"

[29/Dec/2021:13:35:40 +0100] - 200 200 - GET https gr.chrkac.com "/api/datasources/proxy/1/query?db=iobroker&q=SELECT%20mean(%22value%22)%20FROM%20%22viessmannapi.0.271207.0.features.heating.dhw.sensors.temperature.hotWaterStorage.properties.value.value%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22viessmannapi.0.271207.0.features.heating.dhw.temperature.main.properties.value.value%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22viessmannapi.0.271207.0.features.heating.dhw.charging.properties.active.value%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(previous)%3BSELECT%20mean(%22value%22)%20FROM%20%22viessmannapi.0.info.connection%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(previous)&epoch=ms" [Client 192.168.188.20] [Length 5929] [Gzip -] [Sent-to 192.168.178.233] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" "https://gr.chrkac.com/d/ylJMgbXiz/iobroker?orgId=1"

[29/Dec/2021:13:35:46 +0100] - - 403 - GET https gr.chrkac.com "/api/datasources/proxy/1/query?db=iobroker&q=SELECT%20mean(%22value%22)%20FROM%20%22javascript.0.Google_Maps.zur_Arbeit.Minuten_0%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22javascript.0.Google_Maps.zur_ArbeitAnja.Minuten_0%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)&epoch=ms" [Client 192.168.188.20] [Length 171] [Gzip 3.23] [Sent-to 192.168.178.233] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" "https://gr.chrkac.com/d/ylJMgbXiz/iobroker?orgId=1"

[29/Dec/2021:13:35:46 +0100] - 200 200 - GET https gr.chrkac.com "/api/datasources/proxy/1/query?db=iobroker&q=SELECT%20mean(%22value%22)%20FROM%20%22mqtt.0.Terasse.Helligkeit%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22mqtt.0.Terasse.Batterie%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22mqtt.0.Terasse.WiFi%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)&epoch=ms" [Client 192.168.188.20] [Length 4633] [Gzip -] [Sent-to 192.168.178.233] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" "https://gr.chrkac.com/d/ylJMgbXiz/iobroker?orgId=1"

[29/Dec/2021:13:35:47 +0100] - - 403 - GET https gr.chrkac.com "/api/datasources/proxy/1/query?db=iobroker&q=SELECT%20mean(%22value%22)%20%20%2F%201000%20FROM%20%22sonoff.0.Waschmaschine_D58B90.ENERGY_Power%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(2m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22javascript.0.Waschmaschine.An%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(2m)%20fill(previous)&epoch=ms" [Client 192.168.188.20] [Length 171] [Gzip 3.23] [Sent-to 192.168.178.233] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" "https://gr.chrkac.com/d/ylJMgbXiz/iobroker?orgId=1"

After having had a deeper look I found one difference between the successful and the unsuccessful posts:
Successful posts contain "[Gzip -] "
Unsuccessful posts carry "[Gzip 3.23]", exactly as for the user creating this issue.

Is this a bug in nginx itself?

Bye
Christof

<!-- gh-comment-id:1002986515 --> @christofkac commented on GitHub (Dec 30, 2021): Hi, I have a similar problem: I want to access a Grafana dashboard which loads data from an influxdb. Strangely, some data is read correctly and for some data I get the error 403 like in the post above. Here some examples: ``` [29/Dec/2021:13:35:40 +0100] - - 403 - GET https gr.chrkac.com "/api/datasources/proxy/1/query?db=iobroker&q=SELECT%20mean(%22value%22)%20FROM%20%22javascript.0.HeizungHolland.Aussentemperatur%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22javascript.0.HeizungHolland.TemperaturIst%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22javascript.0.HeizungHolland.TemperaturSoll%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22javascript.0.HeizungHolland.BrennerAn%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(previous)&epoch=ms" [Client 192.168.188.20] [Length 171] [Gzip 3.23] [Sent-to 192.168.178.233] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" "https://gr.chrkac.com/d/ylJMgbXiz/iobroker?orgId=1" [29/Dec/2021:13:35:40 +0100] - 200 200 - GET https gr.chrkac.com "/api/datasources/proxy/1/query?db=iobroker&q=SELECT%20mean(%22value%22)%20FROM%20%22viessmannapi.0.271207.0.features.heating.dhw.sensors.temperature.hotWaterStorage.properties.value.value%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22viessmannapi.0.271207.0.features.heating.dhw.temperature.main.properties.value.value%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22viessmannapi.0.271207.0.features.heating.dhw.charging.properties.active.value%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(previous)%3BSELECT%20mean(%22value%22)%20FROM%20%22viessmannapi.0.info.connection%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(previous)&epoch=ms" [Client 192.168.188.20] [Length 5929] [Gzip -] [Sent-to 192.168.178.233] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" "https://gr.chrkac.com/d/ylJMgbXiz/iobroker?orgId=1" [29/Dec/2021:13:35:46 +0100] - - 403 - GET https gr.chrkac.com "/api/datasources/proxy/1/query?db=iobroker&q=SELECT%20mean(%22value%22)%20FROM%20%22javascript.0.Google_Maps.zur_Arbeit.Minuten_0%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22javascript.0.Google_Maps.zur_ArbeitAnja.Minuten_0%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)&epoch=ms" [Client 192.168.188.20] [Length 171] [Gzip 3.23] [Sent-to 192.168.178.233] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" "https://gr.chrkac.com/d/ylJMgbXiz/iobroker?orgId=1" [29/Dec/2021:13:35:46 +0100] - 200 200 - GET https gr.chrkac.com "/api/datasources/proxy/1/query?db=iobroker&q=SELECT%20mean(%22value%22)%20FROM%20%22mqtt.0.Terasse.Helligkeit%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22mqtt.0.Terasse.Batterie%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22mqtt.0.Terasse.WiFi%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(5m)%20fill(linear)&epoch=ms" [Client 192.168.188.20] [Length 4633] [Gzip -] [Sent-to 192.168.178.233] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" "https://gr.chrkac.com/d/ylJMgbXiz/iobroker?orgId=1" [29/Dec/2021:13:35:47 +0100] - - 403 - GET https gr.chrkac.com "/api/datasources/proxy/1/query?db=iobroker&q=SELECT%20mean(%22value%22)%20%20%2F%201000%20FROM%20%22sonoff.0.Waschmaschine_D58B90.ENERGY_Power%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(2m)%20fill(linear)%3BSELECT%20mean(%22value%22)%20FROM%20%22javascript.0.Waschmaschine.An%22%20WHERE%20time%20%3E%3D%20now()%20-%202d%20and%20time%20%3C%3D%20now()%20GROUP%20BY%20time(2m)%20fill(previous)&epoch=ms" [Client 192.168.188.20] [Length 171] [Gzip 3.23] [Sent-to 192.168.178.233] "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36" "https://gr.chrkac.com/d/ylJMgbXiz/iobroker?orgId=1" ``` After having had a deeper look I found one difference between the successful and the unsuccessful posts: Successful posts contain "[Gzip -] " Unsuccessful posts carry "[Gzip 3.23]", exactly as for the user creating this issue. Is this a bug in nginx itself? Bye Christof
kerem commented 2026-02-26 06:34:13 +03:00
Author
Owner
Copy link

@christofkac commented on GitHub (Dec 30, 2021):

Hi,
I played around with the rest API and found out, that the option "block common exploits" was the issue. I guess because the requests which was rejected contained the string "javascript".
Disabling this option made it work.
Hope that helps somebody else.
Bye
Christof

<!-- gh-comment-id:1002990472 --> @christofkac commented on GitHub (Dec 30, 2021): Hi, I played around with the rest API and found out, that the option "block common exploits" was the issue. I guess because the requests which was rejected contained the string "javascript". Disabling this option made it work. Hope that helps somebody else. Bye Christof
kerem commented 2026-02-26 06:34:13 +03:00
Author
Owner
Copy link

@chaptergy commented on GitHub (Dec 30, 2021):

The solution to the original issue is here: https://github.com/jc21/nginx-proxy-manager/issues/1105#issuecomment-950384265

<!-- gh-comment-id:1002995165 --> @chaptergy commented on GitHub (Dec 30, 2021): The solution to the original issue is here: https://github.com/jc21/nginx-proxy-manager/issues/1105#issuecomment-950384265
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
develop
dependabot/npm_and_yarn/backend/liquidjs-10.25.7
dependabot/npm_and_yarn/frontend/prod-minor-updates-2a16bf3987
dependabot/npm_and_yarn/frontend/dev-patch-updates-754666cf41
dependabot/npm_and_yarn/backend/basic-ftp-5.3.0
dependabot/npm_and_yarn/test/follow-redirects-1.16.0
dependabot/npm_and_yarn/test/axios-1.15.0
dependabot/npm_and_yarn/frontend/lodash-4.18.1
dependabot/npm_and_yarn/backend/lodash-4.18.1
dependabot/npm_and_yarn/test/lodash-4.18.1
dependabot/npm_and_yarn/frontend/vite-7.3.2
dependabot/npm_and_yarn/backend/prod-minor-updates-5ec19a7f21
dependabot/npm_and_yarn/frontend/lodash-es-4.18.1
dependabot/npm_and_yarn/frontend/happy-dom-20.8.9
dependabot/npm_and_yarn/backend/path-to-regexp-8.4.0
dependabot/npm_and_yarn/frontend/picomatch-4.0.4
dependabot/npm_and_yarn/backend/picomatch-2.3.2
dependabot/npm_and_yarn/frontend/yaml-1.10.3
dependabot/npm_and_yarn/test/flatted-3.4.2
dependabot/npm_and_yarn/test/tar-7.5.11
dependabot/npm_and_yarn/frontend/immutable-5.1.5
master
dependabot/npm_and_yarn/test/glob-10.5.0
dependabot/npm_and_yarn/frontend/mdast-util-to-hast-13.2.1
dependabot/npm_and_yarn/test/form-data-4.0.4
v3-abandoned
bump-freedns
openidc
ssl-passthrough-hosts
static-content
v2.14.0
v2.13.7
v2.13.6
v2.13.5
v2.13.4
v2.13.3
v2.13.2
v2.13.1
v2.13.0
v2.12.6
v2.12.5
v2.12.4
v2.12.3
v2.12.2
v2.12.1
v2.12.0
v2.11.3
v2.11.2
v2.11.1
v2.11.0
v2.10.4
v2.10.3
v2.10.2
v2.10.1
v2.10.0
v2.9.22
v2.9.21
v2.9.20
v2.9.19
v2.9.18
v2.9.17
v2.9.16
v2.9.15
v2.9.14
v2.9.13
v2.9.12
v2.9.11
v2.9.10
v2.9.9
v2.9.8
v2.9.7
v2.9.6
v2.9.5
v2.9.4
v2.9.3
v2.9.2
v2.9.1
v2.9.0
v2.8.1
v2.8.0
v2.7.3
v2.7.2
v2.7.1
v2.7.0
v2.6.2
v2.6.1
v2.6.0
v2.5.0
v2.4.0
v2.3.1
v2.3.0
v2.2.4
v2.2.3
v2.2.2
v2.2.1
v2.2.0
v2.1.2
v2.1.1
v2.1.0
2.0.14
2.0.13
2.0.12
2.0.11
2.0.10
2.0.9
2.0.8
2.0.7
2.0.6
2.0.5
2.0.4
2.0.3
2.0.2
2.0.0
v2.0.0
1.1.2
1.1.1
1.0.1
Labels
Clear labels   
awaiting feedback

   
bug

   
cannot reproduce

   
dns provider request

   
duplicate

   
enhancement

   
enhancement

   
enhancement

   
good first issue

   
help wanted

   
invalid

   
need more info

   
no certbot plugin available

   
product-support

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
stale

   
troll

   
upstream issue

   
v2

   
v2

   
v2

   
v3

   
wontfix
No labels
awaiting feedback
bug
cannot reproduce
dns provider request
duplicate
enhancement
enhancement
enhancement
good first issue
help wanted
invalid
need more info
no certbot plugin available
product-support
pull-request
question
stale
troll
upstream issue
v2
v2
v2
v3
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/nginx-proxy-manager-NginxProxyManager#740
No description provided.