Forum Discussion

Bubbagump_12531

Icon for Nimbostratus rank

Nimbostratus

Oct 30, 2013

Prevent X-Forwarded-For spoofing

We insert an X-Forwarded-For header to pass back to our web servers. One application we have looks to this header to allow or deny certain servers access to us. However, we want to prevent spoofing t...

application delivery

Bubbagump_12531

Icon for Nimbostratus rank

Nimbostratus

Oct 30, 2013

Ah, brilliant. That works a peach. Thanks so much for your help on this one!

Icon for Altocumulus rank

Altocumulus

Sep 03, 2015

Tested in 11.6.0, [HTTP::header remove "X-Forwarded-For"] is case insensitive and removes all case permutations of the header, avoiding the need for a foreach loop. The original answer above is now sufficient.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Community Articles

application delivery

container ingress services

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5