Thank you for that information. However, we are using the Cloud based WAF. There is no Tab or setting that I can find for that feature. I am new to this so perhaps missing it. Any other suggestions?
------------------------------
Christopher Olson
WI
------------------------------
Original Message:
Sent: 08-23-2020 03:06
From: Roee Sharon
Subject: New to Imperva WAF looking for X-Forwarding feature at WAF level
Hi Christopher,
To achieve what you describe you need to check the "Report forwarded client IP in HTTP header" box,
Under Setup -> Sites -> the relevant service -> "Reverse Proxy" tab.
This will cause the gateway to WRITE an X-Forwarded-For header (or any header name you choose) in the outgoing traffic.
Also note, that if you wish to READ an Existing XFF header sent to the gateway by a load balancer or another equipment, you need to go to:
Setup -> Sites -> the relevant service -> Operation -> Forwarded Connections ->
Check the "Identify real client IP..." box and hit the + sign to set the relevant header name like " X-Forwarded-For".
This will cause SecureSphere to use the XFF IP address in alerting and blocking (If an XFF header exists in the incoming traffic),
rather than the load balancer's client IP.
------------------------------
Roee Sharon
RSECURE
Original Message:
Sent: 08-22-2020 11:06
From: Christopher Olson
Subject: New to Imperva WAF looking for X-Forwarding feature at WAF level
We recently deployed a WAF for our environment. We have a client the has a security feature which blocks traffic unless it comes from a specific whitelisted IP. We used X-Forward feature on our load-balancer to allow for this. However, with the WAF as a proxy, the true client IP never gets to the application. I don't see this option anywhere on the dash board. A search provides a 10 year old document suggesting the application be coded to handle this. That is not an option. Does anyone have an alternate solution or recommendation?
Thanks,
Chris
#CloudWAF(formerlyIncapsula)
------------------------------
Christopher Olson
WI
------------------------------