book
Article ID: CTX231582
calendar_today
Updated On:
Description
ADC X-Forwarded-For is not working.
Backend server can't see the client IP.
Resolution
1. Make sure that vServer type is correct.
HTTP traffic: NetScaler's protocol type must be HTTP.
HTTPS traffic: NetScaler's Protocol type must be SSL.
2. Capture the packets on backend server to verify whether the header exists.
Click here to know how to capture the trace file on ADC.
3. Check logs or capture packets on the device in the middle. Especially WAF/IPS/Firewall.
Problem Cause
Possible Causes:
1. vServer and Service type is incorrect.
2. Backend server can't recognize the client-ip header. The header may be "X-Client-IP", or "X-Forwarded-For" or other customize headers.
3. WAF/Firewall in the midder removed the header.