Forum Discussion

Nimbostratus

Nov 09, 2017

X-Forward without a http profile?

I have a VIP that does SSL pass-trough (F5 doesn't offload any SSL_, so I can't use a http profile but I would like to have X-Froward enabled. Is there a way to accomplish that? Thx, V...

Cirrostratus

Nov 09, 2017

Hello Vedran,

You can't add the XFF without HTTP profile.

Also if you don't terminate the SSL on the F5, the system cannot manage headers since the full headers and body are encrypted.

If you want to add the XFF you should at least make SSL Bridging.

Which means that you will have an SSL tunnel btw the client and the F5 and another one btw the F5 and the backend server.

Regards

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

X-Forward without a http profile?

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Error post F5 upgrade

ACME DNS RFC-2136 Let's Encrypt certs

Big-IP LTM integration with Big-IP DNS in Azure

UCS Encryption Question

Dnssec deployment

Related Content

Extracting X-Forwarded-For in Node.js

X Forwarded For Single Header Insert

TCP Option 28 X-Forwarded-For Header

X-FORWARDED header in WAF

X-Forwarded-For Log Filter for Windows Servers

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS