Reverse Lookup On IP

Anon

Our company uses

getenv("REMOTE_ADDR");

to identify the origin of the IP that the customer orders from. We get a lot of fraud from certain countries and want to do a reverse lookup on this IP to find the country of origin. Does anyone know of a way to do this within PHP code automatically? Currently, we take the IP that is returned and manually insert it into a traceroute program to determine the country of origin.

Anon

This may be better to bypass proxy servers:

<?php

if (getenv(HTTP_X_FORWARDED_FOR))
{

$ip=getenv(HTTP_X_FORWARDED_FOR);
}
else
{
$ip=getenv(REMOTE_ADDR);
}

Richard Akindele.
geocities.com/akindele/

Anon

Surely then, someone who isn't behind a proxy can spoof their IP to your app by sending a false HTTP_X_FORWARDED_FOR or HTTP_CLIENT_IP header?

Anon

RTFM: http://www.php.net/gethostbyaddr

Anon

gethostbyaddr is for reverse lookup. But I believe Bill is asking for help on how to determine the real IP of a visitor. So, IP has to be known first, before apply gethostbyaddr.

Spoofing? Yes, IP can be spoofed, whether you use getenv($REMOTE_ADDR), or getenv(HTTP_X_FORWARDED_FOR).

I'm not sure what the fool-proof solution is.

Richard Akindele
geocities.com/akindele/