Adam Parsons wrote:
Hi,
I have a child proxy server that forwards requests to the parent proxy server where the traffic goes through url filtering to block requests to sites not appropriate. The administrator at the child proxy server site, has access to temporary override the blocking while they investigate the site. The problem is that the override is performed at the parent proxy server end, and just removes the blocking from the child proxy server address, so everyone going through the child proxy server gets no filtering traffic while the override is taking place. Is there a way to have the parent proxy server, know the origins ip address, instead of the child proxy server address, and therefore only unblocking traffic for that computer? What are the disadvantaged of allowing for the IP to pass through the child proxy server (seeing as the parent proxy server, will remove it so its not available to the public).
Thanks,
Adam
The child proxy should be setting the X-Forwarded-For header in all
proxied requests. If its not it need to be enabled.
Then the parent proxy needs to be configured to check for the header and
can see who the real client is.
Thats as much help as I can be on this, but it should point you in the
driection of a quick solution.
Amos
