Configuring XFF HTTP Headers

HTTP > Configuration > X-Forwarded-For Headers

In IWSVA, there are mainly two scenarios to configure:

Enabling or disabling the parsing of XFF HTTP headers
Configuring the action taken on the XFF HTTP header (if enabled.)
Note: To verify how your deployment mode works with the X-Forward-For parsing header, see the Deployment Mode table.

To configure the XFF HTTP header module settings:

Go the HTTP > Configuration > X-Forwarded-For Header.
Enable or disable parsing of the XFF HTTP.
To enable, select Enable from the drop-down list..
To disable, select Disable from the drop-down list.

If parsing is enabled, set the action to Keep (default) the X-Forwarded-For header intact, Append the IP address where the IWSVA receives the request, or Strip the X-Forwarded-For header. (See the following table.)

Action	Description
Keep	(Default) IWSVA does not make any changes to the XFF HTTP header.
Append	IWSVA adds the IP address of the last hop into the XFF HTTP header. If the XFF HTTP header does not exist, IWSVA creates one.
Strip	IWSVA removes the XFF HTTP header from the HTTP request and prevents the privacy information of the client from leaking upstream.

Click Save.

See also:

About X-Forwarded-For HTTP Headers