Andreas Larsen

My feedback

  1. 348 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    An error occurred while saving the comment
    Andreas Larsen commented  · 

    I just completed fending off a botnet attack behind Cloudflare, whereas I was getting Cloudflare IPs as the visitor IP and no way to find the original visitor IP in order to block them in the Cloudflare firewall without first disabling HTTP Proxy, effectively exposing my server IP and opening up the attack surface of my server, just in order to get the visitor IPs.

    I talked to Cloudflare support and they refer to X-Forwarded-For header as being the de-factor standard for this scenario, widely supported in web farm and HTTP proxy solutions. If I were running a VM or possibly Azure Cloud Service, I would be able to enable logging of this, but not when using Azure Web Apps. This is such a standard scenario for Azure users, I am amazed there is no solution for this yet.

    The two solutions I can think of are:
    1) Change the code of all my Azure services to explicitly log the X-Forwarded-For request headers in my application logs. Really not desirable.

    2) Put my web apps and services behind an Azure firewall to give me more control of blocking IPs and viewing traffic details. We originally used Cloudflare for this, but their firewall offering is quite basic.

    Andreas Larsen supported this idea  · 
  2. 250 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    12 comments  ·  Web Apps  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Andreas Larsen commented  · 

    Related to: https://feedback.azure.com/forums/267889-log-analytics/suggestions/6519267-collect-iis-advanced-logs

    If we could pass on the X-Forwarded-For request header to the web server logs, that would be helpful.

    Andreas Larsen shared this idea  · 

Feedback and Knowledge Base