Any thoughts? My load balancer is properly setting X-Forwarded-For. I confirmed the header and getRemoteAddr() with this quick jsp iteration:

        <table style="border: 1px;padding: 4px;border-spacing: 0px;">

            <%

                Enumeration eNames = request.getHeaderNames();

                while (eNames.hasMoreElements()) {

                    String name = (String) eNames.nextElement();

                    String value = normalize(request.getHeader(name));

            %>

            <tr><td><%= name%></td><td><%= value%></td></tr>

            <%

                }

            %>

            <tr><td>IP:</td><td><%= request.getRemoteAddr()%></td></tr>

        </table>

Why is my access.log file still showing the ip address of my load balancer?

To confirm: when I stop sending x-forwarded for on the load balancer, the header disappears from the above table, and request.getRemoteAddr() starts to report the address of the load balancer. The only thing not working seems to be the access log file.

I should have mentioned that I tried that as well. I tried the pattern that matches "common", but swapped out the host for %a:

<access-log pattern="%a %l %u %t &quot;%r&quot; %s %b" directory="${jboss.server.log.dir}" prefix="access"/>

Unfortunately upgrading is not an option at the moment. The software I am running on top of WildFly is only supported up to 8.2.1.

It's a big issue, and we've made the vendor aware. Their next major release will support 11, but it isn't due for another few months.

However, this doesn't seem like it should be rocket science or any sort of off one-off request.

Anyone with a reverse proxy or load balancer would run into this issue. It's probably a setting somewhere.

Doesn't that just apply to ajp? My F5 uses http.