Home > Developer > Java

Multi-method integration of the real IP address of Java GET request client under multi-level reverse proxy

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

In the JSP, the method to obtain the IP address of the client is: Request.getremoteaddr (), which is valid in most cases. However, the real IP address of the client cannot be obtained through the reverse proxy software such as Apache,squid.

If the reverse proxy software is used, the URL of the http://192.168.1.110:2046/is reverse proxy to http://www.javapeixun.com.cn/URL, The IP address obtained with the REQUEST.GETREMOTEADDR () method is: 127.0.0.1 or 192.168.1.110, not the real IP of the client.

After the agent, due to the addition of the middle tier between the client and the service, so the server can not directly get the client's IP, the server-side application can not directly forward the requested address to the client. However, the x-forwarded-for information is added to the HTTP header information of the forwarding request. Used to track the original client IP address and the server address of the original client request. When we visit http://www.javapeixun.com.cn/index.jsp/, it is not that our browser actually accesses the index.jsp file on the server, but first the proxy server accesses HTTP/ 192.168.1.110:2046/INDEX.JSP, the proxy server will return the results of the access to our browser, because it is the proxy server to access the index.jsp, so index.jsp through The Request.getremoteaddr () method gets the IP address of the proxy server, which is actually the address of the client.

So we can get the real IP address of the client method one:

  1. publi Cif  == nullreturnreturn
  3. }

When I visit http://www.5a520.cn/index.jsp/, however, the IP address returned is always unknown, not the 127.0.0.1 or 192.168.1.110 as shown above, and I visit http:// 192.168.1.110:2046/index.jsp, you can return the real IP address of the client and write a method to verify it. The reason was on the squid. The squid.conf configuration file Forwarded_for entry is on by default, if Forwarded_for is set to OFF: X-forwarded-for:unknown

Then we can obtain the client real IP address method two:

  2. public
  4. Ifnull | | . Equalsignorecase (IP)) { 
  6. );
  8. Ifnull | | . Equalsignorecase (IP)) { 
  10. );
  12. ifnull | |  
  14. Return }

However, if through the multi-level reverse proxy, x-forwarded-for value and more than one, but a string of IP values, exactly which is the real client IP?

The answer is to take the first non-unknown valid IP string in x-forwarded-for.

such as: x-forwarded-for:192.168.1.110, 192.168.1.120, 192.168.1.130, 192.168.1.100 user real IP: 192.168.1.110

If the above method is not enough, use the following method:

[Java]View Plain copy
  2. /**
  4. * Get current network IP
  6. * @param request
  8. * @return
  10. */
  12. Public String getipaddr (httpservletrequest request) {
  14. String ipAddress = Request.getheader ("x-forwarded-for");
  16. if (ipAddress = = Null | | ipaddress.length () = = 0 | | "Unknown". Equalsignorecase (ipAddress)) {  
  18. ipAddress = Request.getheader ("Proxy-client-ip");
  20. }
  22. if (ipAddress = = Null | | ipaddress.length () = = 0 | | "Unknown". Equalsignorecase (ipAddress)) {  
  24. ipAddress = Request.getheader ("Wl-proxy-client-ip");
  26. }
  28. if (ipAddress = = Null | | ipaddress.length () = = 0 | | "Unknown". Equalsignorecase (ipAddress)) {  
  30. IpAddress = Request.getremoteaddr ();
  32. if (ipaddress.equals ("127.0.0.1") | | | ipaddress.equals ("0:0:0:0:0:0:0:1")) {
  34. ///IP based on NIC for native configuration
  36. InetAddress inet=null;
  38. try {
  40. inet = Inetaddress.getlocalhost ();
  42. } catch (Unknownhostexception e) {
  44. E.printstacktrace ();
  46. }
  48. Ipaddress= inet.gethostaddress ();
  50. }
  52. }
  54. //For the case of multiple agents, the first IP is the client real IP, multiple IPs according to ', ' split
  56. if (ipaddress!=null && ipaddress.length () >){ //"***.***.***.***". Length () =
  58. if (Ipaddress.indexof (",") >0) {
  60. ipAddress = ipaddress.substring (0,ipaddress.indexof (","));
  62. }
  64. }
  66. return ipAddress;
  68. }


The above is from the network. I just integrate with it. Hope to help everyone!

Multi-method integration of the real IP address of Java GET request client under multi-level reverse proxy

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
get ip address of domain php get ip address of visitor unix get ip address of host get real ip address php snmp get ip address of interface php get ip address of local machine php get ip address of user

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More