Configuring XFF HTTP Headers

HTTP > Configuration > X-Forwarded-For Headers

In IWSVA, there are mainly two scenarios to configure:

Enabling or disabling the parsing of XFF HTTP headers
Configuring the action taken on the XFF HTTP header (if enabled.)
Note: To verify how your deployment mode works with the X-Forward-For parsing header, see the Deployment Mode table.

To configure the XFF HTTP header module settings:

Go the HTTP > Configuration > X-Forwarded-For Header.
Enable or disable parsing of the XFF HTTP.
To enable, select Enable from the drop-down list..
To disable, select Disable from the drop-down list.

If parsing is enabled, set the action to Strip (default) the X-Forwarded-For header, Append the IP address where the IWSVA receives the request, or Keep the X-Forwarded-For header intact. (See the following table.)

Action	Description
Keep X-Forwarded-For header intact	IWSVA does not make any changes to the XFF HTTP header.
Append the IP address where IWSVA receives the request	IWSVA adds the IP address of the last hop into the XFF HTTP header. If the XFF HTTP header does not exist, IWSVA creates one.
Strip X-Forwarded-For header	(Default) IWSVA removes the XFF HTTP header from the HTTP request and prevents the privacy information of the client from leaking upstream.

Click Save.

See also:

About X-Forwarded-For HTTP Headers