Currently my company has been using X-forwarded-for header. However, it seems this logic is susceptible to spoofing. Is there any way to essentially minimize the spoofing on our end.
I have read about adding custom headers to true-client-ip. However, please correct me if I am wrong, the true-client-ip comes from the left most ip-address from X-Forwarded-For which is still vulnerable to spoofing. Is there a better solution to this?
Please sign in to leave a comment.