Search:     Advanced search
Browse by category:
Glossary | Ask question



How to enable X-Forwarded-For option on ASF?
Add comment
Views: 27968
Votes: 0
Comments: 1639

ArrayOS ASF 3.0.0.1 supports the function of inserting the client IP address into HTTP requests for the specified HTTP profile. After this function is enabled for an HTTP profile that is applied to a security service, client IP addresses that hit the security service will be forwarded to real services associated with the security service.

Why we require X-Forwarded-For option:

The X-Forwarded-For (XFF) header is a de-facto standard header for identifying the originating IP address of a client connecting to a web server through an HTTP proxy or a load balancer. When traffic is intercepted between clients and servers, server access logs contain the IP address of the proxy or load balancer only. To see the original IP address of the client, the X-Forwarded-For request header is used.

Please follow below instructions to enable X-Forwarded-For option through webui:

  • Login into ASF webui.
  • Expand “Application Defense” option under security Defense.

            

  • Click on “HTTP Profile” and click on “Request Security” option.
  • Click on “Request Header” under “Request Security” options
  •  Enable the “X-Forwarded-For” option in section “Transferring Client IP to Backend Server”
  • Selection value as “Header” in Transfer Mode.
  • Click on Apply Changes and save configuration globally.

            

 

  • We can also define custom header name by mentioning the require header name in “Custom Entity Name” option.

             

 

 

Please follow below instructions to enable X-Forwarded-For option through CLI:

 

  • Login into ASF CLI
  • Switch to enable mode with command “enable” and enter into confirm mode with command “conf terminal”
  • Execute the below command to enable the x-forwarded-for option

#http profile insert request xforwardedfor on "Http_profile_Name" header "X-Forwarded-For"

Note: Please mention the exact http profile name on highlighted section on above command.

 

Example for enabling the xforwardedfor :

#http profile insert request xforwardedfor on "CLP" header "X-Forwarded-For"

 

Example for enabling the xforwardedfor  with custom header name:

#http profile insert request xforwardedfor on "CLP" header "Client_ip"

 

How to verify that ASF is forwarding the client ip to Backend server :

To confirm this, we need to take the debug trace log from ASF. If you are using HTTPS real service then you need to decrypt the debug trace for backend real service communication.

In debug trace, click on http request from ASF to real service and check for header name "X-Forwarded-For". The http request should have the header "X-Forwarded-For" with client ip.

 

 

 




Showing: 1-20 of 1639    »»
Comments
 
  • 24 Apr, 2025   |   Justintange

  • <a href="https://continent-telecom.com/virtual-number-whatsapp">виртуаль ый номер ватсап</a>



  • 23 Apr, 2025   |   frenzinaomi

  • https://soundcloud.com/moichill/nu-hon-bac-ty-2025-full-lau-mien-phi-xem-phim-vi et-nam-online
    https://soundcloud.com/moichill/tim-xac-ma-khong-dau-2025-full-la u-mien-phi-xem-phim-viet-nam-online
    https://soundcloud.com/moichill/dia-dao-mat -troi-trong-bong-toi-full-lau-mien-phi-phimmoichill
    https://soundcloud.com/moic hill/cuoi-ma-giai-han-2025-full-lau-mien-phi-phimmoichill
    https://soundcloud.co m/moichill/me-quy-con-ma-2025-full-lau-mien-phi-phimmoichill
    https://soundcloud .com/moichill/panor-ta-thuat-huyet-ngai-2025-full-lau-mien-phi-phimmoichill
    htt ps://soundcloud.com/moichill/tay-nghiep-du-2025-full-lau-mien-phi-phimmoichill
    https://soundcloud.com/moichill/gau-yeu-cua-anh-2025-full-lau-mien-phi-phimmoich ill
    https://soundcloud.com/moichill/quy-nhap-trang-2025-full-lau-mien-phi-phimm oichill
    https://soundcloud.com/moichill/am-duong-lo-2025-full-lau-mien-phi-phim moichill
    https://soundcloud.com/phim-cgv/nha-gia-tien-2025-full-lau-mien-phi-ph immoichill
    https://soundcloud.com/phim-cgv/yeu-nham-ban-than-2025-full-lau-mien -phi-phimmoichill
    https://soundcloud.com/phim-cgv/na-tra-2-ma-dong-nao-hai-2025 -full-lau-mien-phi-phimmoichill
    https://soundcloud.com/phim-cgv/tiem-an-cua-quy -2025-full-lau-mien-phi-phimmoichill
    https://soundcloud.com/phim-cgv/thap-cuong -thi-2025-full-lau-mien-phi-phimmoichill
    https://soundcloud.com/phim-cgv/tet-am -hon-2025-full-lau-mien-phi-phimmoichill
    https://soundcloud.com/phim-cgv/anh-kh ong-dau-2025-full-lau-mien-phi-phimmoichill
    https://soundcloud.com/phim-cgv/ngh i-le-truc-quy-2025-full-lau-mien-phi-phimmoichill
    https://soundcloud.com/phim-c gv/oan-linh-nhap-xac-2025-full-lau-mien-phi-xem-phim-viet-nam-online
    https://so undcloud.com/phim-cgv/bo-tu-bao-thu-2025-full-lau-mien-phi-phimmoichill
    https:/ /papaly.com/categories/share?id=619c0fa91ded49b58d2cebec1d1aa48a
    https://raindr op.io/icikiwir/dfdtfdfydudayts-54671935
    https://www.passes.com/bfdshtdhdfhdf
    /> h ttps://pinshape.com/users/7803455-fgjfgufyutgyj
    https://fyers.in/community/memb er/k0qOT8Rrd1
    https://gamebanana.com/members/4428516
    /> https://www.rolepages.com /characters/nasgortutung/
    https://gamblingtherapy.org/forum/users/nasgortutung/
    https://wikizilla.org/wiki/User:Nasgortutung
    /> https://forum.issabel.org/u/gore ngcilok
    https://www.grepmed.com/simeutpaehplok
    /> https://bandori.party/user/2824 16/simeutpaehplok/
    https://schoolido.lu/user/simeutpaehplok/
    /> https://cinderell a.pro/user/201935/simeutpaehplok/
    https://yodayo.com/posts/dab66945-1481-4afd-9 ce7-aa1d6a419a65
    https://multy.me/D8YwF
    /> https://www.deviantart.com/anyzxan/art /simeutpaehplok-beleumkelenci-1186567052
    https://forum.lexulous.com/user/simeut paehplok
    https://forum.ripper.store/user/simeutpaehplok
    /> https://conecta.club/t opic/1179-simeutpaehplok-beleumkelenci/
    https://forumketoan.com/threads/simeutp aehplok-beleumkelenci.67521/
    https://www.furaffinity.net/journal/11120253/
    /> htt ps://foro.ribbon.es/topic/71900/simeutpaehplok-beleumkelenci
    https://www.twosap p.com/68090e39c971c87075c46188
    https://tooter.in/stevaniachaw/posts/11438798277 4215938
    https://hallbook.com.br/posts/543538
    /> https://businessboostier.mn.co/po sts/83471814
    https://vibnix.com/posts/8732
    /> https://talkfever.com/posts/49683
    /> https://www.deviantart.com/stevianaomi/journal/beleumcau-bangkonglele-1186574130
    https://chobaolam.vn/threads/simeutpaehplok-beleumkelenci.663743/
    /> https://cho dilinh.com/threads/simeutpaehplok-beleumkelenci.465779/
    https://diendannhansu.c om/threads/simeutpaehplok-beleumkelenci.773705/
    https://forum.phuongnamedu.vn/t hreads/simeutpaehplok-beleumkelenci.9842/
    https://www.petition2congress.com/cta s/simeutpaehplok-beleumkelenci
    https://hackmd.io/@stevaniachaw/S1vrcKUJex
    /> http s://www.collcard.com/post/285369_https-soundcloud-com-moichill-nu-hon-bac-ty-202 5-full-lau-mien-phi-xem-phim-viet.html
    https://findaspring.org/members/susutjin cine/
    https://bootstrapbay.com/user/acisampeuedol



  • 23 Apr, 2025   |   daddysgurl4ever

  • https://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDhiMzAxMGY3M mUyMDAwODA0MWIwYi1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com /reports/public/cGVubnN0YXRlLTY4MDhiM2IzN2IyMDEyMDAwOGZkOTY2NC1VUl8zeHdBRDN2bGNz TFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDh iNDMyOTZiZTc5MDAwODRkNjRjNy1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qua ltrics.com/reports/public/cGVubnN0YXRlLTY4MDhiNGEzOTZiZTc5MDAwODRkNjRjOC1VUl8zeH dBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0Y XRlLTY4MDhiNTJhMGY3MmUyMDAwODA0MWIwZS1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennsta te.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDhiNjM3YjU4MzVhMDAwODgxZDI4 NC1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/public /cGVubnN0YXRlLTY4MDhiNmM4YjU4MzVhMDAwODgxZDI4Ni1VUl8zeHdBRDN2bGNzTFRmdGM=
    https ://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDhiNzJiM2U5YTE2MD AwOGM0N2NiNC1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/repo rts/public/cGVubnN0YXRlLTY4MDhiNzhkN2IyMDEyMDAwOGZkOTY4ZS1VUl8zeHdBRDN2bGNzTFRmd GM=
    https://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDhiN2Y2 M2U5YTE2MDAwOGM0N2NkMy1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtric s.com/reports/public/cGVubnN0YXRlLTY4MDAwYjVjYzgyMmE4MDAwODA4MTBlMi1VUl8zeHdBRDN 2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLT Y4MDAxMTE4YzgyMmE4MDAwODA4MTZiYy1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca 1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDAxMjY1ZjMzMGM0MDAwODQ3Yzk1MC1VU l8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/public/cGVu bnN0YXRlLTY4MDAxNDUwNzAzZThjMDAwOGJkZGM2Yy1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pe nnstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDAxNTAzYzgyMmE4MDAwODA 4MTkyMy1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/p ublic/cGVubnN0YXRlLTY4MDAxNTk2ZmIwM2NlMDAwODkxODgwZS1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDAxNzk4ZTAwY zMwMDAwODJmYmM1Zi1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com /reports/public/cGVubnN0YXRlLTY4MDAxOGEzZTAwYzMwMDAwODJmYmUyYS1VUl8zeHdBRDN2bGNz TFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDA xYmEyNzM3MjQ2MDAwOGM1YjZhZC1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qua ltrics.com/reports/public/cGVubnN0YXRlLTY4MDAxYzU0ZTAwYzMwMDAwODJmYzBlYS1VUl8zeH dBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0Y XRlLTY4MDI1OWM0N2IyMDEyMDAwOGZiOTY3Yi1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennsta te.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDI1YWFjMGY3MmUyMDAwODAyMGVl Mi1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/public /cGVubnN0YXRlLTY4MDI1YjU0N2IyMDEyMDAwOGZiOTZiNi1VUl8zeHdBRDN2bGNzTFRmdGM=
    https ://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDI1ZDNkMGY3MmUyMD AwODAyMGY5NS1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/repo rts/public/cGVubnN0YXRlLTY4MDI1ZTYyOTZiZTc5MDAwODRiNWU5Ny1VUl8zeHdBRDN2bGNzTFRmd GM=
    https://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLTY4MDI2MDEy OTAyYTIyMDAwOGZmNzAwZi1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://pennstate.ca1.qualtric s.com/reports/public/cGVubnN0YXRlLTY4MDI3NGE4MGY3MmUyMDAwODAyMjI2MC1VUl8zeHdBRDN 2bGNzTFRmdGM=
    https://pennstate.ca1.qualtrics.com/reports/public/cGVubnN0YXRlLT Y4MDI3NTk3M2U5YTE2MDAwOGMyOTViOC1VUl8zeHdBRDN2bGNzTFRmdGM=
    https://glot.io/snip pets/h6p872eynm
    https://paste.myst.rs/78442c9n
    /> https://wokwi.com/projects/4290 39548988394497
    https://pastebin.com/cFxJc3VW
    /> https://pastelink.net/k6mxvd4a
    /> h ttps://etextpad.com/pnhglgprzh
    https://pastenote.net/yamh6
    /> https://paste.cento s.org/view/8b786119
    https://freepaste.link/public/smlxvatm2u
    /> https://p.ip.fi/Z OnN
    https://binshare.net/ZiRGUDjk1WhjZcNFu4jP
    /> https://notes.io/wGLKC
    /> https:// tech.io/snippet/ePU8uDt
    https://privatebin.net/?6c36a989b01425dd#4XhebwAXujnWdK 3froJmevCq8PVV7apMnA2GNeYxR5hP
    https://app.daily.dev/posts/nxvbxcmdfgjhsertjser tjsrt-k95itqwg3
    https://healingxchange.ning.com/profiles/blogs/bdfxsnsnnsfnfn
    /> https://foro.ribbon.es/topic/71903/vbxcvxfdhsersherh
    /> https://developers.maxon.n et/forum/user/anncarolynterri
    https://demo.evolutionscript.com/forum/topic/1500 -fdbsxtne5hrhasersherhsh
    https://forumketoan.com/threads/fsdzbdfbndsnfgndfgn.67 524/
    https://imgur.com/gallery/vbzxcndfzsghershresjherhser-2ur0iH2



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/Z_-INsBf-X8UkFsJ>ремонт фундамента кемерово</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/aAIAbeHKpRTqTdA1>подъем домов новокузнецк</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://vk.com/zamena_venzov>подъем домов новокузнецк</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/b/YeUbWXvHvw0oJxPJ>подъем домов кемерово</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/aACP5cj2F2BXHQe4>замена венцов кемерово</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/aAIHG7j7SlCrXDAZ>подъем домов кемерово</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/Z_-INsBf-X8UkFsJ>подъем домов новокузнецк</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/aAIAbeHKpRTqTdA1>замена венцов новокузнецк</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/aACP5cj2F2BXHQe4>замена венцов новокузнецк</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/aAIHG7j7SlCrXDAZ>подъем домов новокузнецк</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://ok.ru/zamenavent>подъем домов кемерово</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/aAIHG7j7SlCrXDAZ>подъем домов новокузнецк</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/aAIHG7j7SlCrXDAZ>ремонт фундамента кемерово</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/Z_-INsBf-X8UkFsJ>ремонт фундамента новокузнецк</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/b/YeUbWXvHvw0oJxPJ>подъем домов кемерово</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/aACP5cj2F2BXHQe4>подъем домов новокузнецк</a>



  • 23 Apr, 2025   |   Jorgestuck

  • <a href=https://dzen.ru/a/aACP5cj2F2BXHQe4>ремонт фундамента кемерово</a>



    Add comment
    Name:
    Email:
    Comment: *
    (Use BBcode - No HTML)


    Other questions in this category
    How to enable HTTP to HTTPS redirection in ASF?
    What are the steps for password recovery of APV/AG/ASF Appliance?
    How to Decrypt Packet capture with Session keys?
    Array Signature Library (ASL) Update
    How to Mitigate the Log4j2 Vulnerabilities Using ASF
    How to create a mail alert for WAF attack events