Forum Discussion

Nimbostratus

Apr 08, 2019

iRule to retrieve the first IP from an HTTP header

Requirement: client traffic will have a header named "Client_IP_XFF" which will have more than 1 IP. They want the LTM to retrieve the first IP from this header and insert it into X-Forwarded-For hea...

application delivery

iRules

Lee_Sutcliffe

Nacreous

Apr 08, 2019

You need to convert the multiple IP addresses into a TCL list using '

' as a delimiter. Then use

lindex

to return the first element.

I've modified your iRule a bit, try the following and let me know how you get on.

when HTTP_REQUEST {

     remove XFF header, will inset this again later
    if {[HTTP::header exists "X-Forwarded-For"]} {
        HTTP::header remove "X-Forwarded-For"
    }

    if {[HTTP::header exists "Client_IP_XFF"]}{
         split Client_IP_XFF value into a list
        set ipList [split [HTTP::header value "Client_IP_XFF"] ","]
         use first element of list for XFF value
        HTTP::header insert "X-Forwarded-For" [lindex $ipList 0] 
    } else {
        HTTP::header insert "X-Forwarded-For" [getfield [IP::client_addr] % 1] 
    } 
}

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)