« Previous Next »

• 07-02-2008, 12:29 AM

  betawiz Joined on 08-30-2006, 1:52 PM Posts 5	Tracking Actual IP Address Behind BigIP Reply Contact We are using IIS6. We would like to track actual requester's IP address and other details of the the request. Right now we are getting load balancer IP in our log. Is there anyway that we can configure IIS 6.0 or use any tools to meet our requirment?!

• 07-02-2008, 2:05 AM

  In reply to

  Martin Hallin Joined on 07-02-2008, 5:57 AM Posts 1

  Re: Tracking Actual IP Address Behind BigIP Reply Contact During a Session at TechED in Orlando last month one of Microsoft operations Staff clamed that they have a tool that can do this, but I don't know if it is working with IIS6.0 or if it is only for IIS7.0, but he was unable to say if it was to be released, If they can do it, there should be a way but I don't know how, I also need this type of tool.

• 07-03-2008, 10:57 PM

  In reply to

  steve schofield Joined on 06-10-2002, 4:54 PM MI Posts 3,964

  Re: Tracking Actual IP Address Behind BigIP Reply Contact I would check with BigIP.  I'm not familar with this tool, but Foundry has something called DSR (direct server return), BigIP might have something similar.  Doesn't sound like an IIS issue as much as how requests are routed. Steve Schofield Windows Server MVP - IIS http://weblogs.asp.net/steveschofield http://www.IISLogs.com Log archival solution Install, Configure, Forget

• 07-03-2008, 11:43 PM

  In reply to

  qbernard Joined on 03-26-2003, 2:12 AM Malaysia Posts 3,229	Re: Tracking Actual IP Address Behind BigIP Reply Contact Ya. this is product feature issue. You can check if the x-forwarded ip is valid. ISA proxy has a setting to relay the original client ip. I'm sure BigIP has it as well, since is so popular. Cheers, Bernard Cheah

• 12-11-2008, 10:13 PM

  In reply to

  rkorock Joined on 12-11-2008, 10:00 PM Posts 2

  Re: Tracking Actual IP Address Behind BigIP Reply Contact betawiz, Is there a reason you have configured BIG-IP to replace the source IP address (also known as SNAT'ing)? Some customers do in fact need to enable SNAT on their BIG-IP to assist in routing, however it is not always required. I would first find out if you need SNAT or not. If not, disable it, and BIG-IP will not modify the source IP at all. If you do need SNAT, then your best bet is to have the BIG-IP inject the true source IP address into the X-forwarded header, and then configure IIS to log based upon the IP in the header, and not the source IP of the packet. Its not as scary as it sounds ;). This SOL has all the details -> https://support.f5.com/kb/en-us/solutions/public/4000/800/sol4816.html Please, feel free to contact me if you need some assistance with this. Regards, Ryan F5 networks

• 07-27-2009, 12:40 AM

  In reply to

  pure.krome Joined on 05-28-2006, 4:45 AM Melbourne, Australia Posts 59

  Re: Tracking Actual IP Address Behind BigIP Reply Contact @Rkorock: We have a number of websites in an IIS7 webfarm. Currently our client IP's are returning the IP of the load balancer, not their real IP's (or the closest IP to the client). As such, should we be tweaking our F5 to append an X-forwarder header?  If the answer is YES, then i know how to access this in our .NET C# code. Simple. But for our IIS logs, we need to install an ISAPI filter? Does this filter work in IIS7 ??

• 08-08-2009, 12:57 AM

  In reply to

  rkorock Joined on 12-11-2008, 10:00 PM Posts 2	Re: Tracking Actual IP Address Behind BigIP Reply Contact Yes, an option is to install the ISAPI filter that F5 makes available. It has been tested and does work with IIS7. Let me know if you need more details.   Ryan