Hi All,
I am currently using Nginx as a reverse proxy with SSL termination to proxy several web services hosted on a Windows Server via IIS. Certbot is set up as well with free SSL goodness => happy management 
.
Everything works as expected expect for one thing…
ESET is installed on the Windows Server and from time to time we get some malicious requests coming through and the AV sees the Nginx server as the threat and blocks it.
All web services are inaccessible until I lift the block => management not so happy anymore 
.
The current Nginx config adds the X-Forwarded-For Header with the source IP of the client but ESET seems to be ignoring it. I have tried pushing ESET upstream and installing it on the Nginx server but that does not seem to change anything.
Anyone ever encountered that kind of scenario? I am sure I am missing something trivial…
