Forum Discussion

f5_lover_237043's avatar
Icon for Nimbostratus rankNimbostratus
Nov 14, 2016

Issue with value of X-Forwrded-For header + Incapsula

One of our application has X-FORWARDED-FOR enabled and spoofing protection is enabled as well. The application use Incapsula Web Application Firewall for internet traffic, it accepts traffic from client and forwards to F5. The app team can only see Incapsula IP address instead of client IP addresses. Is there a way where F5 can retain client IP addresses provided by Incapsula so that they can see client IP's instead on Incapsula IP.


Our X-FORWARDED-FOR profile is configured this way Request Header Erase : X-FORWARDED-FOR Request Header Insert : X-FORWARDED-FOR:[IP::client_addr]