Ping a Specific Port

Question

sidprak

Asked: 2012-04-06 16:41:49 +0800 CST2012-04-06 16:41:49 +0800 CST 2012-04-06 16:41:49 +0800 CST

Nginx clear X-Forwarded-For before setting

772

What can I use in the nginx config to make it clear any existing X-Forwarded-For headers before setting its own? I am currently using Nginx to terminate SSL before passing traffic to HAProxy to load balance.

Right now, I have:

proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

This will append a new IP address to the end of any existing X-Forwarded-For IP addresses however. Is there a way to only keep the address seen by Nginx?

2 Answers

Voted

Shane Madden · Answer 1 · 2012-04-06T16:48:25+08:00

Best Answer

Shane Madden

2012-04-06T16:48:25+08:002012-04-06T16:48:25+08:00

Just don't use $proxy_add_x_forwarded_for - the whole purpose that it exists is to do the appending behavior.

Instead:

proxy_set_header X-Forwarded-For $remote_addr;

9

Youssef · Answer 2 · 2021-02-20T01:49:25+08:00

Youssef

2021-02-20T01:49:25+08:002021-02-20T01:49:25+08:00

If anyone still have this issue, you can make use of "more_clear_input_headers" to keep only the address of last hop seen by Nginx.

more_clear_input_headers "X-Forwarded-For";

see the docs from openresty: https://github.com/openresty/headers-more-nginx-module#more_clear_input_headers

1

Nginx clear X-Forwarded-For before setting

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?