I am trying to maintain the source IP going through my socks proxy into the DMZ. Since my connection is TCP I can't use the typical XFF header method for reverse proxies. Is there any standard way to accomplish this?
Asked
Active
Viewed 191 times
1
-
Don't use a SOCKS proxy. – Michael Hampton Aug 19 '16 at 20:38
-
@MichaelHampton what would you recommend then? I don't want the end user to know the address of the server, so socks seemed like the way to go – asdf Aug 19 '16 at 20:41
-
@MichaelHampton Also, mobile connections are necessary, so that rules out ssh tunnels – asdf Aug 19 '16 at 20:45
-
What are you hitting in the DMZ? Is it http or something else? That may dictate you options – Adrien Aug 19 '16 at 21:46
-
@Adrien It's a palo alto firewall – asdf Aug 19 '16 at 22:11
-
Sorry, I meant what sort of service are the connections coming in to? – Adrien Aug 20 '16 at 08:34
-
the reason I ask, is because if the protocol over SOCKS is http, then our product [WinGate](http://www.wingate.com) can take the SOCKS connection, hand it over to the WWW proxy, and insert headers into it. Disclaimer: I work for Qbik who make WinGate – Adrien Aug 24 '16 at 21:06