Real Ip of internet Client hide by WAF in XG Firewall

Hello Said,

You may disable NAT and check if that would work for you.

Hello Aditya,

there is no nat in the configuration WAF in sophos XG , the business rule for Web server don't use NAT 

Best Regards

Hi,

please post a copy of your rule.

Ian

Was this ever resolved?

I have the same issue,

Thanks

jon

no ,  the support confirmed that was not possible , and I had asked for a  "feature-requests.aspx"

https://ideas.sophos.com/forums/330219-xg-firewall/suggestions/37746052-we-are-not-able-to-see-the-actual-public-ips-whic

thanks

Made sure to pass host headers through the WAF then I added X-Forwarded-For column to the IIS logs.. working a treat.

I'm now tweaking my Logstash pipleline to properly send it off to ElasticSearch for ingestion.

Thanks

Made sure to pass host headers through the WAF then I added X-Forwarded-For column to the IIS logs.. working a treat.

I'm now tweaking my Logstash pipleline to properly send it off to ElasticSearch for ingestion.

Thanks