If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!
It was asked on CFTalk the other day about how to access the header that most load balancers populate with the real IP address of a user. Due to the way that load balancers work the actual request comes from the LB and not the user themselves. To be able to know what the IP address of the user is the LB will populate an HTTP Header called "X-Forwarded-For" while the cgi.remote_addr will be the IP address of the LB. To read this information we need to use GetHttpRequestData() which will tell us what is in the header. From there we can alter the CGI so the rest of the application is aware of the correct IP address.
Here is a sample piece of code...
-
<!--- Make sure that we know the users real ip address --->
-
<cftry>
-
<cfif StructKeyExists(GetHttpRequestData().headers, "X-Forwarded-For")>
-
<cfset request.remote_addr = GetHttpRequestData().headers["X-Forwarded-For"]>
-
<cfelse>
-
<cfset request.remote_addr = CGI.REMOTE_ADDR>
-
</cfif>
-
<cfcatch type="any"></cfcatch>
-
</cftry>
Hope this helps!
Comments
The load balancer we use passes “cgi.HTTP_X_CLIENTSIDE”. We’ve used essentially same code for the past year.
-
About This
I'm J.J. Merrick, a Web developer from Nashville, TN. This is a blog, intended to be my venting station about all things technology. I will talk about the Internet, Web Development, ColdFusion, Flex, Ajax, etc.
