Difference between "True client ip" and "X-Forwarded for"

Question

I want to understand the difference between "True client ip" and "X-Forwarded for".&nbsp;

jad_tabbara__j1 · Answer

Hello,&nbsp;
Actually the XFF header is inserted exactly for that purpose... to let the backend server knows the "real client IP addr".&nbsp;
Indead, when you have a reverse proxy between your client and server. The reverse proxy most of the time (for simplicity) change the source client IP  (this is what we call SNAT is F5 references). So in order to let the server know who is behind the reverse proxy, the F5 can insert the XFF header with the client addr.&nbsp;
In that manner, once the request is forwarded to the client it can process this info. &nbsp;
Hope it clarifies.&nbsp;
Regards&nbsp;

jad_tabbara__j1 · Answer

For more info check the following link&nbsp;
https://support.f5.com/csp/article/K4816&nbsp;

stanislas_piro2 · Answer

Hi,&nbsp;
Before 2014, there was no standard http header to insert proxies client ip.&nbsp;
The most common non standard http header was X-Forwarded-For.&nbsp;
Some other proxy / reverse proxy use true-cient-ip (like Akamai)&nbsp;
RFC 7239 describe new standard but is not well deployed yet.&nbsp;

Forum Discussion

Difference between "True client ip" and "X-Forwarded for"

Recent Discussions

NAT for specific IPs

Upgrading BIGIP 2000S to R2600

TS Declarations for DNS

how to view list os client support via cli

automatic learning logs/report ?

Related Content

Using "X-Forwarded-For" in Apache or PHP

Add a custom "X-forwarded-for" header name

Copper SFP Differences

Different policies same destination and pool

Different ways Financial Services Institutions can deploy NGINX in Azure

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS