Solved

Load balancer and IP Question Questions

Posted on 2006-10-24
5
192 Views
Last Modified: 2013-12-24
Some of my apps verify that the ip address is allowed to access the app… but this isn’t working because all requests are going through the load balancer and the cgi.remote_host (what i currently use to verify a users ip) is always going to show the load balancer.  How do I work around this issue?
0
Comment
Question by:polobruce
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 36

Expert Comment

by:SidFishes
ID: 17796621
AFAIK, don't think there's much to do about it except create a "proper" user authentication scheme using a login and password. IP solutions are dodgy at best and as you are seeing can all sorts of unforseen issues. Plus services like AOL route all traffic through a few IPs in Virginia and anyone with a dynamic address (dialup) would be SOL. Maybe that's not an issue for your app but it does show the weakness of IP authentication.
0
 

Author Comment

by:polobruce
ID: 17798465
So SideFishes, there is no way to get the clients ip instead of the load balancers ip?
0
 
LVL 36

Accepted Solution

by:
SidFishes earned 250 total points
ID: 17798891
afaik, not in CF. From what I've read some load balancers can be set up to modify http headers with http-proxy information and some can be set to "transparent" mode...but this really is dependant on what you are using for LB (and is certainly beyond me)
0

Featured Post

Myth Busting: MongoDB Scalability (it scales!)

I was talking with one of my colleagues from our Technical Account Manager team about MongoDB’s scalability. He mentioned to me that several customers have been telling him that “MongoDB doesn’t scale!” MongoDB’s scalability was in question?

My response was, “Is that a joke?"

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is a guide to setting up a new WHM/cPanel Server to be used for web hosting accounts. It is intended for web hosting company administrators and dedicated server owners. For under $99 per month (considering normal rate of Big Data Cetnters like …
Periodically we have to update or add SSL certificates for customers. Depending upon your hosting plan you may be responsible for the installation and/or key generation. In the wake of Heartbleed many sites were forced to re-key. We will concen…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question