On 21/02/2011 18:16, Amos Jeffries wrote:
On 21/02/11 16:33, Pieter De Wit wrote:
Hi Amos,

just had a go at this:

request_header_access X-Forwarded-For deny
header_replace X-Forwarded-For

and it's still passing XFF from another source thru - Nothing to urgent
since the Deb6 boxes are getting built :) But if you spot something ?

Just a typo missing "all" after the "deny ".

and no value to hard-code into the header on the replace line.

This one is tricky to use since you have to hard-code the value passed back, it wont contain the real client IP you want.

Amos
Yeah, not quite what we are after so squid 3.1.6 will have to do the trick :)

Thanks for the time !

Pieter

Reply via email to