As the COVID-19 situation continues to evolve and organizations are having to adjust, Alert Logic is here for you, 24/7. Learn More

Can Web Security Manager Premier turn off writing to the XFF header?
Can Web Security Manager Premier write a custom header?
Does Web Security Manager Premier support connection throttling?
How do I configure forward secrecy in Web Security Manager?
How do I disable TLS 1.0 or earlier?
How does Alert Logic assist with scrapers?
How does Alert Logic handle expired SSL certificates?
How does SSL mutual authentication work?
How does the Alert Logic web application firewall scale in the event of a Denial-of-Service attack?
How does the AWS Auto Scaling Web Security Manager master share SSL certificates with the worker nodes?

Can Web Security Manager Premier turn off writing to the XFF header?

Yes, Alert Logic® Web Security Manager Premier™ can be configured to leave the XFF header untouched if it receives the request from a trusted proxy. It must be a proxy with a source IP that is within a subnet that is configured in Web Security Manager.

For example, suppose Web Security Manager is deployed in a private network behind a load balancer that terminates at L7. Both appliances are in the 10.0.0.0/8 subnet.

If the 10.0.0.0/8 subnet is entered in the trusted proxy field, the client source IP will be extracted from the XFF header.
If the "Keep X-Forwarded-For..." option is selected, Web Security Manager will leave the XFF header (and the XFP header) untouched when forwarding the request to the back end.

Comments

0 comments

Please sign in to leave a comment.

Articles in this section

Related articles