403 Error when check "Allow traffic from Cloudflare only"

[psychedelicu]

I get 403 error when i check the "Allow traffic from Cloudflare only" option in Cloudpanel.
I'm using a Cloudflare tunnel if it matters. How can i resolve this?

[slaweallx]

I get 403 error when i check the "Allow traffic from Cloudflare only" option in Cloudpanel.
I'm using a Cloudflare tunnel if it matters. How can i resolve this?

Cloudflare adds the original client IP to the CF-Connecting-IP header. IP validation using this header can improve compatibility with the Cloudflare tunnel.

You can add the following code to the relevant Nginx configuration file or security settings in Cloudpanel:

set_real_ip_from 127.0.0.1;
real_ip_header CF-Connecting-IP;

Note: When using a Cloudflare tunnel, keep in mind that the tunnel does not route traffic through Cloudflare IPs, but through its own private IPs. In this case, you may need to add the tunnel's IP address to the security settings. Find out the IP address of the Cloudflare tunnel and add it to set_real_ip_from.