Hello
Has anyone had any experience with IBM Datapower and "The PROXY Protocol": (
The Proxy Protocol was designed to chain proxies / reverse-proxies without losing the client information),See here:
- https://www.haproxy.com/de/blog/haproxy/proxy-protocol/
- https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt
Since our WSG is SSL endpoint, we only see the IP source address of the upstream load balancers, they can't integrate "HTTP X-Forward" in the header since the traffic is encrypted.
We need to be SSL endpoint as we are checking the client certificate.
With the "Proxy Protocol" there seems to be a solution to get the real source IP address.
Many greetings
Andreas
------------------------------
Andreas Brand
------------------------------