HAProxy- how to send HTTPS IP address to web server, I keep getting errors
-
System Configuration:
PfSense 27.07.01
HAProxy-devel 0.64_2
Snort 4.1.6_28
PFBlockerNG 3.2.10Trying to get HAProxy to send the external HTTPS IP to the web server.
Web Server: Windows Server 2025 - IIS with W3C logging and "X-Forward-for" option activated. The IIS log shows the "X-Forward-for" entry, but it is blank. The only IP shown in the log is the PFSense IP.
When I look at the HAProxy Dashboard widget, I see the traffic with the external IP's that are connecting to the WEB server.
My issue is how do I get these external HTTPS addresses to the WEB server.
I have tried in the SSL front-end and in the SSL Backend, placing the "X-Forward-for" option in the advanced settings, "Bind pass thru" as well as "Advanced pass thru" and both gives errors when trying to save. Therefore, I know this is not the correct approach.
What are the correct steps to get the HTTPS IP address sent to the Web server?
Thanks
-
"X-Forward-for" is a HTTP host header, which HAproxy adds and puts the client IP into, if configured.
If you want to see it in the backend web servers log you have to add it to its logging options.