Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Wolfgang
Authority
Authority

performance impact of adding XFF header

Following XFF Header injection over source NATed HTTP/S connections (checkpoint.com) we can add XFF-header to every http request.

Any experience out there which performance impact has this feature ? I've a feeling that changing every http/https-request needs a lot.

I think to add the XFF-header to a HTTPS-request full HTTPS inspection is needed. From the requirements in sk167578 "For HTTPS traffic: Enable HTTPS inspection on the relevant connections.

But I'm not sure if the XFF-header is part of the whole encrypted HTTP-request-header or maybe readable unencrypted ?

0 Kudos
1 Reply
PhoneBoy
Admin
Admin

At minimum you need to activate APCL/URLF and HTTPS Inspection as all HTTP Headers are encrypted.
Not sure what the performance impact is above and beyond that.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events