Donster_297784
Apr 09, 2017Nimbostratus
SNAT/X-Forwarded
Hey guys,
Bit of a weird one this. So I have 2 HA pairs both SNAT'ing but require the x forwarded to preserve the original source IP to due an access control for the client IP on the end server.
The traffic comes in on the first pair, I SSL offload, I then use server-side incompatible to pass it on the next pair. It then hits the next pair so would it be best just to make this pass through and then hit the SNAT again to reach the end server? I have in my head this would work but I may be missing something.
The key to it is basically having the original client IP available when it reaches the end server.
Thanks for the input!