Fortinet 268 FortiWeb 5.0 Patch 6 Administration Guide
2. Configure these settings:
Setting Description
Name Type a unique name that can be referenced in other parts of the
configuration. Do not use spaces or special characters. The maximum
length is 35 characters.
Note: The name cannot be changed after this part of the configuration
is saved. To rename a part of the configuration, clone it, select it in all
parts of the configuration that reference the old name, then delete the
item with the old name.
Add
X-Forwarded-For:
Enable to include the X-Forwarded-For: HTTP header on requests
forwarded to your web servers. Behavior varies by the header already
provided by the HTTP client or web proxy, if any.
•Header absent — Add the header, using the source IP address of
the connection.
•Header present — Verify that the source IP address of the
connection is present in this header’s list of IP addresses. If it is not,
append it.
This option can be useful if your web servers log or analyze clients’
public IP addresses, if they support the X-Forwarded-For: header.
If they do not, disable this option to improve performance.
This option applies only when FortiWeb is operating in reverse proxy
mode or true transparent proxy mode, which applies source network
address translation (NAT) and therefore rewrites the source address in
the IP layer.
Add X-Real-IP: Enable to include the X-Real-IP: HTTP header on requests
forwarded to your web servers. Behavior varies by the header already
provided by the HTTP client or web proxy, if any (see Add
X-Forwarded-For:).
Like X-Forwarded-For:, this header is also used by some proxies
and web servers to trace the path, log, or analyze based upon the
packet’s original source IP address.
This option applies only when FortiWeb is operating in reverse proxy
mode or true transparent proxy mode, which applies source network
address translation (NAT) and therefore rewrites the source address in
the IP layer.