Cycles X-Forwarded-For Header from a set of configured IP addresses.
Similar to ModHeaders, but less static.
Configure a Target IP address or Hostname, and a List of IP addresses.
This extension will pick one IP address from the list and insert it into requests to the target server as the value of the X-Forwarded-For header.
This is geared towards testers of Web Application Firewalls, where you need to generate traffic that looks like it's coming from different IP addresses. Normally, servers do not trust XFF that is not set by their DMZ, so you will need to configure your WAF to accept untrusted XFF first. I found it particularly useful in Testing F5's Application Security Manager Software.
[What's New]
[v0.2.0]
* bug fixes.
Latest reviews
- (2018-04-03) Alin CALINCIUC: It really works for Synology IP block.
- (2016-07-14) Ashwin Venkat: This is brilliant and exactly what I've been looking for. Thanks Fanen!!
Statistics
Installs
231
history
Category
Rating
4.5 (8 votes)
Last update / version
2016-02-08 / 0.2.0
Listing languages
en