IP Check. Best way to try?

halojoy

		// Gets the default ip sent by the user
		if (!empty($REMOTE_ADDR)) {
			$direct_ip = $REMOTE_ADDR;
		}

	// Gets the proxy ip sent by the user
	$proxy_ip	 = '';
	if (!empty($HTTP_X_FORWARDED_FOR)) {
		$proxy_ip = $HTTP_X_FORWARDED_FOR;
	} else if (!empty($HTTP_X_FORWARDED)) {
		$proxy_ip = $HTTP_X_FORWARDED;
	} else if (!empty($HTTP_FORWARDED_FOR)) {
		$proxy_ip = $HTTP_FORWARDED_FOR;
	} else if (!empty($HTTP_FORWARDED)) {
		$proxy_ip = $HTTP_FORWARDED;
	} else if (!empty($HTTP_VIA)) {
		$proxy_ip = $HTTP_VIA;
	} else if (!empty($HTTP_X_COMING_FROM)) {
		$proxy_ip = $HTTP_X_COMING_FROM;
	} else if (!empty($HTTP_COMING_FROM)) {
		$proxy_ip = $HTTP_COMING_FROM;
	} // end if... else if...

	// Returns the true IP if it has been found, else FALSE
	if (empty($proxy_ip)) {
		// True IP without proxy
		return $direct_ip;
	} else {
		$is_ip = preg_match('|^([0-9]{1,3}\.){3,3}[0-9]{1,3}|', $proxy_ip, $regs);
		if ($is_ip && (count($regs) > 0)) {
			// True IP behind a proxy
			return $regs[0];
		} else {
			// Can't define IP: there is a proxy but we don't have
			// information about the true IP
			return FALSE;
		}
	} // end if... else...

I know there are effective ways to hide your ip.

But if want to make a try, as far as possible, to get the ip of somebody user,
is the above way the optimal order to check for HTTP variables?
If not, what would you change?
(Note: the above script is not complete. Only shows the order of checking)

Weedpacket

// Gets the default ip sent by the user

No it doesn't. It gets the IP to which the response is to be sent. If there is a proxy, it would be the proxy IP. (Assuming that register_globals is turned on, and who does that these days?

// Gets the proxy ip sent by the user

No it doesn't. It gets the user's IP if the proxy has included it in the request headers.

            $is_ip = preg_match('|^([0-9]{1,3}\.){3,3}[0-9]{1,3}|', $proxy_ip, $regs);

You do know about [man]ip2long[/man], right?