Using WebApp Secure with Third-Party Load Balancer

If you are using the appliance with a third-party load balancer, you must make sure to tell WebApp Secure to accept the X-Forwarded-For header from the load balancer. If this is not set, all IPs in the appliance will seem to be coming from the load balancer directly.

To trust the X-Forwarded-For header, SSH into the appliance, and enter the following:

sudo mykonos-shell config set engine.exclude_forward_addresses <IP_of_Loadbalancer>

This tells WebApp Secure to trust the header of your load balancer.