Description | This article describes how to view real client IP on FortiProxy when user is hidden behind another proxy device with x-forwarded HTTP headers configured to send ClientIP inside HTTP headers |
Scope | FortiProxy 7.0+ |
Solution |
The solution below is designed to help find real clientip that is hidden from another proxy that is forwarding clientip inside http headers.
A simple network diagram is represented below:
To view the Real IP of the client which is located inside HTTP headers, navigate to Log & Report -> Http Transaction Log:
In the main view, select Configure Table. By default, it is not visible but can be activated by hovering the mouse on top of it.
Select Client IP from the column options and apply the change:
After this change, the Client IP Column will be visible, and all IPs will be listed here.
If the user has FortiAnalyzer to forward the logs, the client IP is omitted. Below is an example of the client IP showing when FortiAnalzyer is connected and when not.
This issue is resolved in FortiAnalyzer v7.2.4 and v7.4.1.
Related articles: |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.