down vote
<>favorite
<https://stackoverflow.com/questions/37170742/unable-to-retrieve-x-forwarded-for-in-tomcat-8-0-access-log#>
I am injecting a header with a rewrite policy on my LB to pass X-Forwarded-For
header. Have verified that this appears on all the pages in the RESPONSE Header.
I have the following config in server.xml , yet i am not able to see the Remote
IP/X-Forwarded-For either using %a or %h (I see Loadbalancer IP)
What could be the issue?
<Valve className="org.apache.catalina.valves.RemoteIpValve"
internalProxies="10\.202\.13\.198"
remoteIpHeader="X-Forwarded-For"
proxiesHeader="x-forwarded-by"
requestAttributesEnabled="true"
/>
<Valve className="org.apache.catalina.valves.AccessLogValve"
directory="logs"
prefix="localhost_access_log"
suffix=".txt"
pattern="%t %a %h %{Referer}i %l %S %{User-Agent}i %U %s %r %q %A
%v %p %b %I %D"
requestAttributeEnabled="true"
resolveHosts="false"/>
Log ::
[11/May/2016:11:29:39 -0700] 10.202.13.198 10.202.13.198 https:///index.action
- 04B3ADCF82A212C6ECD9679BF260732D Mozilla/5.0 (Macintosh; Intel Mac OS X
10_11_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/50.0.2661.86
Safari/537.36 /rest/mywork/latest/status/notification/count 200 GET
/rest/mywork/latest/status/notification/count HTTP/1.1 10.202.10.17 443 72
http-nio-8443-exec-17 13
As you see : both %a and % h are : 10.202.13.198 10.202.13.198 (my LB IP)
Snippet of my Resonse Header: showing my LB policy is injecting the
X-Forwarded-For header.
Cache-Control:private
Content-Encoding:gzip
Content-Type:application/json
Date:Wed, 11 May 2016 17:58:55 GMT
Expires:Wed, 31 Dec 1969 16:00:00 PST
Server:Apache-Coyote/1.1
Strict-Transport-Security:max-age=31536000; includeSubDomains
Transfer-Encoding:chunked
Vary:User-Agent
X-AUSERNAME:admin
X-App-Cluster-Node:4e77b660
X-App-Cluster-Node-Name:app_prod_clus_node3
X-Content-Type-Options:nosniff
X-Forwarded-For:1.1.1.1
X-Seraph-LoginReason:OK
