Paul_Roberts_16
Jul 21, 2014Nimbostratus
X-Forwarded-For and SNAT addresses
When debugging a minor issue for a client a couple of weeks ago, I wound up staring at a screenful of header dump that showed the X-Forwarded-For value which appears to be not the IP address of the requesting client, but the SNAT address assigned to the F5 (BIG-IP 11.4.1 Build 637.0 Hotfix HF3). This happens with both the HTTP profile and the iRule.
Is it actually possible to get the X-Forwarded-For header to show the original client IP address while SNAT is in use and/or am I missing something here?