Symptoms
The Apache domlogs do not show the remote client IP, and only the proxy IP, after the 2025 June 4 EasyApache update.
Description
The update ZC-12837: Create Cloudflare mod_remoteip configuration creates the /etc/apache2/conf.d/includes/cloudflare.conf file which can take precedence over a manually defined RemoteIPHeader directive in /etc/apache2/conf.modules.d/370_mod_remoteip.conf, preventing the defined header from being used to determine the remote client IP. For example CF-Connecting-IP will be used instead of X-Forwarded-For.
We've opened an internal case for our development team to investigate this further. For reference, the case number is CPANEL-48150. Follow this article to receive an email notification when a solution is published in the product.
Workaround
If you do not want to use Cloudflare, run the following commands to create a touch file, rebuild, and restart Apache:
touch /var/cpanel/no_apache_cloudflare
/usr/local/cpanel/scripts/rebuildhttpdconf
/usr/local/cpanel/scripts/restartsrv_httpd
This will disable the cloudflare.conf file from being used, leaving the RemoteIPHeader in place.
