iRule to get client internal IP (LAN)

The x-forwarded-for header is what you are lookging for and can be applied via the HTTP profile. It will provide the client IP address in the HTTP header.

Yes, but x-forwarded-for gives me the PUBLIC IP, and im looking for a way to get the INTERNAL IP (192.168.10.x)

This isn't my strong side, so im not sure even if its possible, but our F5 integrator said that it is possible with iRule...

If the info is not in the header, I don't know how you could do this, short of creating and inserting some small Javascript that requests the IP address.

I found out that this iRule actually gives the required information: when HTTP_RESPONSE { HTTP::header insert X-Internal [IP::client_addr] }

However im not sure its a standard header field, and now my question is, can i replace x-forwarder-for by this field? I mean when i get to the server the x-forwarder-for field instead of see my public IP the iRule will replace it to Internal IP and i will get x-forwarder-for: 192.168.10.1?

Is it that internal users access F5 thru internet proxy and hit the public IP address of the F5? Then probably you are seeing proxy public IP.

The office with the users in one country that goes to internet -> CDN -> then to LB that located in another country.

That explains why you are seeing Public IP for those users. It could be the CDN IP you are seeing in the logs. So by itself F5 cannot identify the client IP.

No, I see my PUBLIC IP of my office, on CDN i have configuration to pass the original IP of the client.