Is there any way to create rules in ModSecurity that assess level 3 source
ip value? I'm creating a rule set to detect brute-force attacks on legacy
applications and I'd like to consider level 3 source IP (extracted from IP
package HEADER ) and REMOTE_ADDR that is level 7 source IP (extracted from
HTTP header). Any suggestion?