diff --git a/app/src/Server.js b/app/src/Server.js
index bf76c7b2..bcbb11ae 100644
--- a/app/src/Server.js
+++ b/app/src/Server.js
@@ -138,6 +138,7 @@ const io = socketIo(server, {
 });
 
 const host = config.server.hostUrl || `http://localhost:${config.server.listen.port}`;
+const trustProxy = !!config.server.trustProxy;
 
 const jwtCfg = {
     JWT_KEY: (config.jwt && config.jwt.key) || 'mirotalksfu_jwt_secret',
@@ -357,6 +358,7 @@ function OIDCAuth(req, res, next) {
 
 function startServer() {
     // Start the app
+    app.set('trust proxy', trustProxy);
     app.use(helmet.xssFilter()); // Enable XSS protection
     app.use(helmet.noSniff()); // Enable content type sniffing prevention
     app.use(express.static(dir.public));
diff --git a/app/src/config.template.js b/app/src/config.template.js
index fe03ed1f..0bce2efe 100644
--- a/app/src/config.template.js
+++ b/app/src/config.template.js
@@ -82,6 +82,7 @@ module.exports = {
             ip: '0.0.0.0',
             port: process.env.PORT || 3010,
         },
+        trustProxy: false,
         ssl: {
             // ssl/README.md
             cert: '../ssl/cert.pem',