linux

How to set up cross-site request forgery protection in the Request tracker?

After installing the Request tracker, I can't figure out how to set up protection against cross-site request forgery.
The host on which the Request tracker is found is 192.168.2.2
The hostname of the Request tracker is rthost
The host from which I am trying to create a request is 192.168.4.4
The settings file itself

Set( $rtname, 'rthost');
Set( $Organization, 'rthost');
Set( $Timezone, 'Europe/Moscow');
Set(@ReferrerWhitelist, qw(192.168.4.4:80));
Set( $WebPort, 80);
Set( $LogoLinkURL, 'https://domain.com/');

When I try to create a claim, I get the following message:

A possible cross-site request forgery was detected for this request, because the Referrer header passed by the browser (rthost:80) does not match the configured RT hostname (127.0.0.1:80) or host whitelist (192.168. 4.4:80). A malicious attacker may be trying to perform actions on your behalf. If this request was not made by you, you must notify the security service.