X-Forwarded-For only works for a while

diegosucaria · May 11, 2020, 5:20pm

Hello,

I'm using traefik in Kubernetes, with the CRD providers...

I've set up the following options on traefik deployment:

        - --entryPoints.http.forwardedHeaders.insecure=true 
        - --entryPoints.https.forwardedHeaders.insecure=true
        - --entryPoints.http.proxyProtocol.insecure=true 
        - --entryPoints.https.proxyProtocol.insecure=true

After I apply that config, I get the REAL client IP address in X-Forwarded-For and X-Real-Ip...

but after a minute or two, that values go back to be the internal lb IPs...

I've tried putting this instead, but no luck.

 - --entryPoints.http.proxyProtocol.trustedIPs=127.0.0.1/32,10.48.0.0/14
 - --entryPoints.https.proxyProtocol.trustedIPs=127.0.0.1/32,10.48.0.0/14

Curious thing is that every time I make a change either in the forwardedHeaders value or the proxyProtocol , the REAL client IP appears for a minute.... then it goes back...

What could be the issue? How can I provide more information to debug it?

Topic		Replies	Views
How to keep X-Forwarded-For value for app Traefik v2 kubernetes-crd	2	1123	March 24, 2020
X-Forwarded-For is not set with public ip client Traefik v2 kubernetes-crd	1	286	December 12, 2022
Getting real client IP (X-FORWARDED-FOR) in k3s multi-server HA setup Traefik v2 rancher , kubernetes-ingress , tcp	7	3742	November 21, 2024
Disabling forwarding of X-Forwarded-For header? Traefik v1 kubernetes-ingress	3	3829	April 24, 2020
The header X-Forwarded-For contains multiple IPs Traefik v2 kubernetes-ingress	1	890	December 13, 2022

X-Forwarded-For only works for a while

Related topics