#901 Support PROXY protocol for usage with HaProxy
If you have Prosody running behind a NAT or TCP proxy for high availability or load balancing, Prosody can't see the real IP addresses of connecting clients and servers. Therefore Prosody can't block IP-addresses: Brute force attacks cannot be handled, and registration attempts cannot be limited.
Fortunately there is a solution to it: HAProxy implements the PROXY protocol, which transmits a client's IP address to the application endpoint, e.g. a mail server or another application server.
Prosody does not support the PROXY protocol yet. Let's implement that! :-)