I have a PA5020 and am using a proxy server to filter internet traffic. In the traffic monitor all the traffic I see going to the web is from the proxy server. I turned this feature on on the firewall. Enabling support for the X-Forwarded-For HTTP header. After enabling this feature I didn't see any difference in the monitor section of the firewall.
Is there anyway I can identify the user or IP address instead of just identifying the proxy server.
I went through Enabling support for the X-Forwarded-For HTTP header. document and didn't see the commit operation mentioned.
If you have enabled it from the configuration mode, lets make sure you commit the configuration:
# set deviceconfig setting ctd x-forwarded-for yes
I hope you are looking into URL logs for X-forwarded information - not the traffic logs.
Hope that helps!
Thanks and regards,
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!