f5_lover_237043
Nov 14, 2016Nimbostratus
Issue with value of X-Forwrded-For header + Incapsula
One of our application has X-FORWARDED-FOR enabled and spoofing protection is enabled as well. The application use Incapsula Web Application Firewall for internet traffic, it accepts traffic from client and forwards to F5. The app team can only see Incapsula IP address instead of client IP addresses. Is there a way where F5 can retain client IP addresses provided by Incapsula so that they can see client IP's instead on Incapsula IP.
Our X-FORWARDED-FOR profile is configured this way Request Header Erase : X-FORWARDED-FOR Request Header Insert : X-FORWARDED-FOR:[IP::client_addr]