Get client ip from Google Network load balance

Question

I can't use Google's HTTP load balance because it does not support web socket.

So my NGINX is running in Google Container Engine, behind Google Network Load Balance.

When the request arrives NGINX in docker container, it gets the IP of the NODE instead of the client ip.

2016/04/07 10:53:47 [error] 94#0: *73 access forbidden by rule, client: 10.132.0.9

How to solve this problem?

I have the same issue (websocket, need unique IPs) ... any luck so far? — jimm101, Jul 11 '16 at 18:45
Install NGINX load balance out of k8s, and add `X-Forwarded-For` there — Mr.Wang from Next Door, Jul 11 '16 at 23:07

score 2 · Accepted Answer · answered Nov 01 '16 at 23:02

2

Getting the client IP when using Network Load balancer with Kubernetes is a known limitation. You can refer to this issue bug for updates and workarounds.

answered Nov 01 '16 at 23:02

Faizan

1,438
10
18

Also see https://github.com/kubernetes/enhancements/issues/27 – rustyx Jul 10 '19 at 12:50

nelasx · Answer 2 · 2016-04-26T13:22:31.023

0

You get the IP of the "gce network load balancer" in the nginx logs?

since your question is not really clear, i presume your problem is in the nginx configuration. ~~try adding x-forwarded-for option in nginx.conf~~ more clear: real_ip_header X-Forwarded-For;

check the official google post https://cloud.google.com/solutions/https-load-balancing-nginx

edited Apr 26 '16 at 13:22

answered Apr 26 '16 at 12:28

nelasx

161
1
9

Google Http Load Balancer does not support web socket. It is the NGINX running in POD can not get the real ip, has nothing to do with the `X-Forwarded-For` header – Mr.Wang from Next Door Apr 26 '16 at 13:04

Get client ip from Google Network load balance

2 Answers2