Forum Discussion

Nimbostratus

Jan 06, 2019

Is it possible to replace source ip as x forwarded ip?

Can we change the client/source ip before sending the request to the server with the x forwarded ip. The application team needs to use the source ip in their code.

Cirrus

Jan 06, 2019

Draco,

Here is an iRule that should take the contents of the X-Forwarded-For header and SNAT to that IP. I would be careful with this though as unless the F5 is set you be your default gateway, the server may try to send the data back to the client directly. This asymmetrical routing will cause issues with connection.

when HTTP_REQUEST
{
    snat [HTTP::header value X-Forwarded-For]
}

If you have any issues with this iRule or any further questions, I am sure I can help.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Is it possible to replace source ip as x forwarded ip?

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

ASM/AWAF declarative policy

Changes to DO and AS3 GitHub - no longer monitored

Help with SSH Virtual Server

GRE Tunnel Issue

Help with an iRule to disconnect active connections to Pool Members that are "offline"

Related Content

Logging/Blocking possible prompt injection

Secure and Harden Forward Proxies in NGINX Plus

ADFS Proxy Replacement on F5 BIG-IP

SSL forward proxy on VE Lab License possible?

Bidirectional Forwarding Detection (BFD) Protocol Cheat Sheet

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS