Search Imperva Community for
Hi Christopher,To achieve what you describe you need to check the "Report forwarded client IP in HTTP header" box, Under Setup -> Sites -> the relevant service -> "Reverse Proxy" tab.This will cause the gateway to WRITE an X-Forwarded-For header (or any header name you choose) in the outgoing traffic.Also note, that if you wish to READ an Existing XFF header sent to the gateway by a load balancer or another equipment, you need to go to: Setup -> Sites -> the relevant service -> Operation -> Forwarded Connections ->Check the "Identify real client IP..." box and hit the + sign to set the relevant header name like " X-Forwarded-For".This will cause SecureSphere to use the XFF IP address in alerting and blocking (If an XFF header exists in the incoming traffic),rather than the load balancer's client IP.
or Contact Us
Copyright @ 2019 Imperva. All rights reserved