Gregory_Gerard_
Apr 30, 2008Nimbostratus
Oddities in XForwardedFor?
I'm using Tomcat as a webserver and I've got access logs recording the XForwardedFor header into the log.
The oddity I'm seeing is this:
10.20.108.103,unknown
My internal network is 10/16 but *not* 10.20!.
Why is the LTM not recording the real IP address of the other side which is what I really need in the access log?
For most entries, everything works grand but it's these anomalies that are driving me nuts.
The other puzzler is why the LTM even acknowledges the packet.
10. is not publicly routable and this is coming in off a publicly routed interface. I would presume (perhaps wrongly) the LTM would filter out "funny" traffic.
thank!