'XForwarded for' adds second IP

Question

I have the following scenario:&nbsp;
&nbsp;- External clients are load balanced to a pool of Apache proxies (Apache running mod_proxy).  I've enabled 'XForwarded for' to preserve the client's IP address for log purposes.
&nbsp;- The Apache proxies send client traffic to a pool of Apache webservers.  This pool does NOT have XForwarded enabled.
&nbsp;- The Apache proxies and webservers are hanging off the BigIP in a one-armed configuration, i.e. they are on the same VLAN.&nbsp;
&nbsp;The problem I'm seeing is that the requests to the webservers are showing two IPs in the 'XForwarded for' portion of the header:  the original client IP, and the IP of the BigIP.  Why is the BigIP self-ip included?   How do I get rid of it?&nbsp;
&nbsp;- Jericho

unruley_95363 · Answer

You could certainly add a rule that removes the existing X-Forwarded-For header (or renames it to X-X-Forwarded-For).&nbsp;

mayur_108081 · Answer

i am also getting both client ip &amp; the ip of F5 in Apache logs ...with the below script: 
&nbsp;  
&nbsp; LogFormat "%v %{X-Forwarded-For}i %h %l %u %t \"%r\" %&gt;s %b" X-Forwarded-For 
&nbsp; CustomLog /var/log/httpd/www1.bhaskar.com-xforwarded.log X-Forwarded-For 
&nbsp;  
&nbsp; can anybody plz suggest? 
&nbsp;  
&nbsp; M@ny Thanks..! 
&nbsp; -Mayur

what_lies_bene1 · Answer

%h in your LogFormat statement will be the 'real' IP of the F5, remove that and all will be well.

Forum Discussion

'XForwarded for' adds second IP

3 Replies

Recent Discussions

Port Group on F5OS network setting

Advise on setting up IRULE

F5 iRule to replace host to path

google-visualization-issues

google autenticator broken barcode

Related Content

F5 Resources for COVID-19

F5 SSL Pass-through with Xforward.

Redirection and xforwarded-for

xforward-for doesnt work

iControl Library For Java With Source