Forum Discussion

Nimbostratus

Nov 09, 2017

X-Forward without a http profile?

I have a VIP that does SSL pass-trough (F5 doesn't offload any SSL_, so I can't use a http profile but I would like to have X-Froward enabled. Is there a way to accomplish that? Thx, V...

Cirrostratus

Nov 09, 2017

Hello Vedran,

You can't add the XFF without HTTP profile.

Also if you don't terminate the SSL on the F5, the system cannot manage headers since the full headers and body are encrypted.

If you want to add the XFF you should at least make SSL Bridging.

Which means that you will have an SSL tunnel btw the client and the F5 and another one btw the F5 and the backend server.

Regards

Forum Discussion

X-Forward without a http profile?

Recent Discussions

201 Recommendations for Study

URL redirect

Cookie Persistence configured on VS but no logs

Cisco ISE Load Balancing

What is the use of epsec-package file in APM ?

Related Content

TCP Option 28 X-Forwarded-For Header

X-Forwarded-For on L4 VS

X-FORWARDED header in WAF

X Forwarded For Single Header Insert

Restricting Access to Virtual from client IP address in X-Forwarder-For HTTP header