Search:     Advanced search
Browse by category:
Glossary | Ask question



How to enable X-Forwarded-For option on ASF?
Add comment
Views: 31210
Votes: 0
Comments: 2889

ArrayOS ASF 3.0.0.1 supports the function of inserting the client IP address into HTTP requests for the specified HTTP profile. After this function is enabled for an HTTP profile that is applied to a security service, client IP addresses that hit the security service will be forwarded to real services associated with the security service.

Why we require X-Forwarded-For option:

The X-Forwarded-For (XFF) header is a de-facto standard header for identifying the originating IP address of a client connecting to a web server through an HTTP proxy or a load balancer. When traffic is intercepted between clients and servers, server access logs contain the IP address of the proxy or load balancer only. To see the original IP address of the client, the X-Forwarded-For request header is used.

Please follow below instructions to enable X-Forwarded-For option through webui:

  • Login into ASF webui.
  • Expand “Application Defense” option under security Defense.

            

  • Click on “HTTP Profile” and click on “Request Security” option.
  • Click on “Request Header” under “Request Security” options
  •  Enable the “X-Forwarded-For” option in section “Transferring Client IP to Backend Server”
  • Selection value as “Header” in Transfer Mode.
  • Click on Apply Changes and save configuration globally.

            

 

  • We can also define custom header name by mentioning the require header name in “Custom Entity Name” option.

             

 

 

Please follow below instructions to enable X-Forwarded-For option through CLI:

 

  • Login into ASF CLI
  • Switch to enable mode with command “enable” and enter into confirm mode with command “conf terminal”
  • Execute the below command to enable the x-forwarded-for option

#http profile insert request xforwardedfor on "Http_profile_Name" header "X-Forwarded-For"

Note: Please mention the exact http profile name on highlighted section on above command.

 

Example for enabling the xforwardedfor :

#http profile insert request xforwardedfor on "CLP" header "X-Forwarded-For"

 

Example for enabling the xforwardedfor  with custom header name:

#http profile insert request xforwardedfor on "CLP" header "Client_ip"

 

How to verify that ASF is forwarding the client ip to Backend server :

To confirm this, we need to take the debug trace log from ASF. If you are using HTTPS real service then you need to decrypt the debug trace for backend real service communication.

In debug trace, click on http request from ASF to real service and check for header name "X-Forwarded-For". The http request should have the header "X-Forwarded-For" with client ip.

 

 

 




Showing: 1-20 of 2889    »»
Comments
 
  • 03 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.com.qa/url?sa=t&url=https://zamena-ventsov-doma.ru>п одъем дома</a>



  • 03 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.co.id/url?sa=t&url=https://zamena-ventsov-doma.ru>рРµÐ¼Ð¾Ð½Ñ‚ фундамента</a>



  • 03 Jul, 2025   |   MyleskiB

  • <a href=https://maps.google.com.na/url?sa=t&url=https://zamena-ventsov-doma.ru>за мена венцов</a>



  • 03 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.com.bn/url?sa=t&url=https://zamena-ventsov-doma.ru>Ñ€ емонт фундамента</a>



  • 03 Jul, 2025   |   setopoki126

  • https://www.imdb.com/es/list/ls59 9671509/
    https://www.imdb. com/es/list/ls599671141/
    h ttps://www.imdb.com/es/list/ls599671654/
    https://www.imdb.com/es/list/ls599671270/
    https://www.imdb.com/es/list/ls599671461/
    https://www.imdb.com/es/list/ls59 9673300/
    https://www.imdb. com/es/list/ls599673993/
    h ttps://www.imdb.com/es/list/ls599676097/
    https://www.imdb.com/es/list/ls599676313/
    https://www.imdb.com/es/list/ls599672546/
    https://www.imdb.com/es/list/ls59 9672736/
    https://www.imdb. com/es/list/ls599672151/
    h ttps://www.imdb.com/es/list/ls599672149/
    https://www.imdb.com/es/list/ls599672317/
    https://www.imdb.com/es/list/ls599672653/
    https: //prezo.ai/public/CUEVANA-3-Ver-Jurassic-World-El-renacer-Pelcula-Completa-Caste llano-en-Espaol-y-Latino--e91d73b5-6adc-42ba-a852-62c579d94ce8
    https://prezo.ai/public/cuevana-3 -ver-m3gan-20-pelcula-completa-castellano-en-espaol-y-latino--ca354af3-13a3-49a2 -a252-3ef9b80927c6
    https://prezo.ai/public/cuevana-3-ver-f1-la-pelcula-pelcula-completa-cas tellano-en-espaol-y-latino--9cd899fc-40b0-403e-bd10-c3708dc23e8d
    https://prezo.ai/public/cu evana-3-ver-28-aos-despus-pelcula-completa-castellano-en-espaol-y-latino--5f4a37 63-2777-4ae1-b067-fc57d839196f
    https://prezo.ai/public/cuevana-3-ver-elio-pelcula-completa-castellan o-en-espaol-y-latino--02a67a0e-52a4-42ec-adf7-f6c26222ff8d
    https://prezo.ai/publi c/cuevana-3-ver-cmo-entrenar-a-tu-dragn-pelcula-completa-castellano-en-espaol-y- latino--aaae02a4-3992-4aa4-abd1-a1deae46ec2b
    https://prezo.ai/public/cuevana-3-ver-bailarina-pe lcula-completa-castellano-en-espaol-y-latino--0da3b78b-b4bb-440d-9467-5f448ef3de 4b
    https://prezo .ai/public/cuevana-3-ver-superman-pelcula-completa-castellano-en-espaol-y-latino --9351a653-2662-49a6-9ab6-65022a349804
    https://prezo.ai/public/cuevana-3-ver-pitufos-pelcula-comp leta-castellano-en-espaol-y-latino--ce9b1f1e-262e-4e76-9f27-dc97c9bca6ea
    https://prezo.ai/public/cuevana-3-ver-s-lo-que-hicisteis-el-ltimo-verano-pelc ula-completa-castellano-en-espaol-y-latino--e882f636-bee6-4b50-ac2e-3bf440543d5e
    https://prezo.ai/public/cuevana-3-ver-destino-final-lazos-de-sangre-pelcul a-completa-castellano-en-espaol-y-latino--67cce6f2-149f-4fcb-b1bb-7080788f5c6f[/ url]
    [url=https://prezo.ai/public/cuevana-3-ver-lilo-y-stitch-pelcula-completa- castellano-en-espaol-y-latino--ea028f3b-2993-46fa-a61c-a5063bebb027]https://prez o.ai/public/cuevana-3-ver-lilo-y-stitch-pelcula-completa-castellano-en-espaol-y- latino--ea028f3b-2993-46fa-a61c-a5063bebb027

    https://prezo.ai/public/cuevana -3-ver-predator-asesino-de-asesinos-pelcula-completa-castellano-en-espaol-y-lati no--d3a7de47-5e50-4d6e-bb56-d1abf0cd522f
    https://prezo.ai/public/cuevana-3-ver-empezar-d e-nuevo-pelcula-completa-castellano-en-espaol-y-latino--78fb0f5b-b985-4381-8eeb- cfe6f2465b63
    https://prezo.ai/public/cuevana-3-ver-la-hermanastra-fea-pelcula-completa -castellano-en-espaol-y-latino--e024e347-0fa7-45cc-bab5-c444dd0f0abd
    https://www.fanverse.org/blogs/ver-f1-la-pelicula-2025-en-espanol-y -latino-cuevana-3.38209/
    https://www.fanverse .org/blogs/ver-jurassic-world-el-renacer-2025-en-espanol-y-latino-cuevana-3.3821 0/
    https://www.fanverse.org/blogs/ver-padre- no-hay-mas-que-uno-5-2025-en-espanol-y-latino-cuevana-3.38211/
    htt ps://www.fanverse.org/blogs/ver-elio-2025-en-espanol-y-latino-cuevana-3.38212/[/ url]
    [url=https://www.fanverse.org/blogs/ver-m3gan-2-0-2025-en-espanol-y-latino -cuevana-3.38213/]https://www.fanverse.org/blogs/ver-m3gan-2-0-2025-en-espanol-y -latino-cuevana-3.38213/



  • 03 Jul, 2025   |   MyleskiB

  • <a href=http://kaluganews.com/go.php?url=https://zamena-ventsov-doma.ru>подъеР¼ дома</a>



  • 03 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.al/url?sa=t&url=https://zamena-ventsov-doma.ru>зам ена венцов</a>



  • 03 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.co.kr/url?sa=t&url=https://zamena-ventsov-doma.ru>пР¾Ð´ÑŠÐµÐ¼ дома</a>



  • 03 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.com.kh/url?sa=t&url=https://zamena-ventsov-doma.ru>п одъем дома</a>



  • 02 Jul, 2025   |   MyleskiB

  • <a href=https://maps.google.com.gh/url?sa=t&url=https://zamena-ventsov-doma.ru>ре монт фундамента</a>



  • 02 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.com.pr/url?sa=t&url=https://zamena-ventsov-doma.ru>п одъем дома</a>



  • 02 Jul, 2025   |   frenzinaomi




  • 02 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.ws/url?sa=t&url=https://zamena-ventsov-doma.ru>под ъем дома</a>



  • 02 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.co.vi/url?sa=t&url=https://zamena-ventsov-doma.ru>пР¾Ð´ÑŠÐµÐ¼ дома</a>



  • 02 Jul, 2025   |   MyleskiB

  • <a href=http://web-tulun.ru/info/r.php?url=https://zamena-ventsov-doma.ru>замеР½Ð° венцов</a>



  • 02 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.sc/url?sa=t&url=https://zamena-ventsov-doma.ru>под ъем дома</a>



  • 02 Jul, 2025   |   frenzinaomi




  • 02 Jul, 2025   |   MyleskiB

  • <a href=https://maps.google.ge/url?sa=t&url=https://zamena-ventsov-doma.ru>ремо нт фундамента</a>



  • 02 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.lt/url?sa=t&url=https://zamena-ventsov-doma.ru>рем онт фундамента</a>



  • 02 Jul, 2025   |   MyleskiB

  • <a href=https://images.google.com.vc/url?sa=t&url=https://zamena-ventsov-doma.ru>Ñ€ емонт фундамента</a>



    Add comment
    Name:
    Email:
    Comment: *
    (Use BBcode - No HTML)


    Other questions in this category
    How to enable HTTP to HTTPS redirection in ASF?
    What are the steps for password recovery of APV/AG/ASF Appliance?
    How to Decrypt Packet capture with Session keys?
    Array Signature Library (ASL) Update
    How to Mitigate the Log4j2 Vulnerabilities Using ASF
    How to create a mail alert for WAF attack events