Forum Discussion

Nimbostratus

8 years ago

X-Forward without a http profile?

I have a VIP that does SSL pass-trough (F5 doesn't offload any SSL_, so I can't use a http profile but I would like to have X-Froward enabled. Is there a way to accomplish that? Thx, V...

Cirrostratus

8 years ago

Hello Vedran,

You can't add the XFF without HTTP profile.

Also if you don't terminate the SSL on the F5, the system cannot manage headers since the full headers and body are encrypted.

If you want to add the XFF you should at least make SSL Bridging.

Which means that you will have an SSL tunnel btw the client and the F5 and another one btw the F5 and the backend server.

Regards

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

X-Forward without a http profile?

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

IPv8 Would Fix My Routing Tables. It Will Never Ship.

Recent Discussions

Errors with AS3 3.56.0 with F5 17.5.1.6

F5 ASM/AWAF – violations logged but no learning suggestions generated

F5 VELOS Backplane Inter-Tenants Communication

migrate from serie I to R. Cluster LTM-GTM

Best Practice guide for enabling Attack signature In BIG-IP ASM

Related Content

Extracting X-Forwarded-For in Node.js

X Forwarded For Single Header Insert

TCP Option 28 X-Forwarded-For Header

X-FORWARDED header in WAF

X-Forwarded-For Log Filter for Windows Servers

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS