X-Forwarded-For as Client IP in ALB Access Logs

Question

We have a public proxy in front of our ALB. That public proxy forwards requests with the X-Forwarded-For header (to include the Client IP). We have also set up Access Logging for the Application Load Balancer. However, it appears that the IP address recorded for the request is not the actual Client IP address, but the public proxy's IP address.  
  
How do we enable recording of the original client IP address (via the X-Forwarded-For) header in Application Load Balancer Access Logs?  
  
-Shaun

Answer

For others seeking similar information, it appears that what I'm attempting to do is not really practical. Having the firewall behind a caching proxy would not prevent malicious traffic from attempting to access the caching proxy and that proxy attempting to pull cache misses.  
  
Marking this closed as I'll need to find another solution.

Answer

Any chance I can get some AWS Support with this?

Answer

Should this be posted in another forum as I was hoping for some form of response by now.  
  
Thanks in advance.

X-Forwarded-For as Client IP in ALB Access Logs

相关内容