Solved

Load balancer and IP Question Questions

Posted on 2006-10-24
5
185 Views
Last Modified: 2013-12-24
Some of my apps verify that the ip address is allowed to access the app… but this isn’t working because all requests are going through the load balancer and the cgi.remote_host (what i currently use to verify a users ip) is always going to show the load balancer.  How do I work around this issue?
0
Comment
Question by:polobruce
  • 2
5 Comments
 
LVL 36

Expert Comment

by:SidFishes
ID: 17796621
AFAIK, don't think there's much to do about it except create a "proper" user authentication scheme using a login and password. IP solutions are dodgy at best and as you are seeing can all sorts of unforseen issues. Plus services like AOL route all traffic through a few IPs in Virginia and anyone with a dynamic address (dialup) would be SOL. Maybe that's not an issue for your app but it does show the weakness of IP authentication.
0
 

Author Comment

by:polobruce
ID: 17798465
So SideFishes, there is no way to get the clients ip instead of the load balancers ip?
0
 
LVL 36

Accepted Solution

by:
SidFishes earned 250 total points
ID: 17798891
afaik, not in CF. From what I've read some load balancers can be set up to modify http headers with http-proxy information and some can be set to "transparent" mode...but this really is dependant on what you are using for LB (and is certainly beyond me)
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
OpenLDAP set password to expire 7 441
External Wordpress Site loads very slow 1 251
file too large for website 6 62
wordpress limitations 4 91
Have you ever sent email via ColdFusion and thought of tracking this mail to capture the exact date and time when the message was opened ?  If yes, then this article is for you ! First we need a table user_email with columns user_id , email , sub…
When it comes to showing a 404 error page to your visitors, you do not want that generic page to show, and you especially do not want your hosting provider’s ad error page to show either. In this article, I will show you how to enable the custom 40…
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now