Prev  Chapter 9. Frequently Asked Questions  Next

2. Client issues

2.1. Client IP address appears not to be available to backend webserver

2.1.

Client IP address appears not to be available to backend webserver

Our web application is using the client IP for geo location and site statistics. After putting Web Security Manager in front of the website the web application only sees the IP address of Web Security Manager. Is there any way we can forward the client IP address to the backend web server?

Yes. As Web Security Manager is a reverse-proxy it terminates requests from clients and makes the request to the backend webserver on behalf of the client. That makes the source IP (of the client) disappear from the underlying IP packets. However, the original source IP address is forwarded to the backend server in a HTTP header. The header is called "X-Forwarded-For". Your application (or webserver) can be configured to use the information in the header instead

if you are running an IIS server and you want it to log the client IP try Googling for "IIS X-Forwarded-For ISAPI filter".
© 2005 - 2012 Alert Logic inc.
Prev  Up  Next
1. Deployment  Home  3. SSL Certificates