NimbostratusIs there a way to expose a client's real IP when deploying the Remote Desktop Session Host iApp using sNAT? I know you can use X-Forwarded-For when deploying sNAT on HTTP(s) iApps, but how do you accomplish the same for RDP?
CumulonimbusHello,
If i not mistaken, you can do it modifying HTTP profile. You hate to choose XFF.
Follow procedure provide by F5: When you configure BIG-IP LTM to use SNAT, the BIG-IP system replaces the source IP address of an incoming connection with its local self IP address (in the case of SNAT Auto Map), or an address you have configured in a SNAT pool. As a result, Microsoft IIS logs each connection with its assigned SNAT address, rather than the address of the client. Beginning with IIS 7, Microsoft provides an optional Advanced Logging Feature for IIS that allows you to define custom log definitions that can capture additional information such as the client IP address included in the X-Forwarded-For header. This section is only applicable if you are deploying Remote Desktop Gateway or Remote Desktop Web Access.
....
You have the procedure/setting that you have to add in your server in order to log User Source IP...
https://www.f5.com/pdf/deployment-guides/f5-microsoft-remote-desktop-services-dg.pdf
Look from page 26...
Let me now if it's information that you are looking for.
Regards