Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology
Answers

F5 Inserting XFF no matter what

Hello,

I have been troubleshooting XFF issues on one of our VS, and I realized that the F5 would insert an XFF header no matter what...

Let me explain: the HTTP profile was initially configured with Insert XFF Enabled, so using tcpdump, I would see that the XFF field was added.

I disabled the functionnality, and captured the traffic again. The XFF was still present. How is that possible ? The VS configuration is complex, it has rewrite and stream profiles, as well as ASM. Could one of those explain the XFF being added ?

Let me add that this XFF field is not added prior to arriving on the F5. We clearly see the first request to the VS being XFF free, but then the HTTP request processed by the F5 floating IP toward the pool member has XFF set...

Thanks,

0
Rate this Question

Answers to this Question

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Forget it, this was because of Rewrite Profile. By de fault, the option Insert X-Forwarded-For Header was enabled.

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Hi,

Indeed, the rewrite profile add XFF header by default:

Image Text

Uncheck it if you want to disable XFF.

For info you can manage XFF header using:

  • irule
  • ltm policy
  • rewrite profile
  • http profile

regards

0