Disable mod_security on /server-status/
The logs are full of
[Mon Dec 17 21:53:17.236734 2018] [:error] [pid 21:tid 140584069097216] [client 127.0.0.0:35816] [client 127.0.0.0] ModSecurity: Warning. Pattern match "^[\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "793"] [id "920350"] [rev "2"] [msg "Host header is a numeric IP address"] [data "127.0.0.0:8082"] [severity "WARNING"] [ver "OWASP_CRS/3.0.0"] [maturity "9"] [accuracy "9"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "127.0.0.0"] [uri "/server-status/"] [unique_id "XBgazQpkuQsAAAAVlycAAAAG"]