Hi Joe
Yes, it is possible, but there's a little more work involved than just
applying the patch to stunnel.
Firstly, you need to specify in your stunnel.conf that you want stunnel to
add the X-Forwarded-For header:
[https]
accept = 1.2.3.4:443
connect = 1.2.3.4:80
TIMEOUTclose = 0
xforwardedfor=yes
Next you need to have the following in your haproxy config, it can go in
defaults, frontend, listen or backend as appropriate for your setup:
option forwardfor
Finally, you need to configure your web server to use the X-Forwarded-For
header.
We're using Apache's mod_rpaf to do this (http://stderr.net/apache/rpaf/).
Regards,
Graeme.
On 7 October 2010 00:31, Joe Williams <[email protected]> wrote:
>
> I applied the x-forwarded-for patch to stunnel in hopes that haproxy would
> log the forwarded for address but it doesn't seem to. Is this possible?
>
> Thanks.
> -Joe
>
>
>
> Name: Joseph A. Williams
> Email: [email protected]
> Blog: http://www.joeandmotorboat.com/
> Twitter: http://twitter.com/williamsjoe
>
>
>
