Display the real IP in Web Application Firewall (WAF) when using Cloudflare

Question

Many of us are using Cloudflare or similar services to protected their Extranet / Webmail and other public websites using the Sophos WAF. It's possible to display the real IP addresses on any Linux servers behind the firewall by enabling Pass host header in WAF rule. Simply enable the remoteip module in Apache2 and add this to your vhost configuration: 
 RemoteIPHeader X-Client-IP
RemoteIPHeader X-Forwarded-For
RemoteIPProxiesHeader X-Forwarded-By
RemoteIPInternalProxy 10.66.66.1 
 And configure the log format in apache2.conf: 
 SetEnvIf X-Forwarded-For "^.*\..*\..*\..*" forwarded
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
LogFormat "%{X-Forwarded-For}i %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" forwarded
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined env=!forwarded
CustomLog ${APACHE_LOG_DIR}/access.log forwarded env=forwarded 
 However, how can I configure the Sophos Log Viewer to display the real user IP addresses?

Vishal_R · Answer

Hi Saarbruecken Sophos supports an X-forwarded-for header, which will help you get actual client IP on the end server.

However, if your actual ask here is to reflect X-forwarded-for IP-related details too in Sophos Log Viewer then it will go for a feature request, You can submit your Feature Request using the in-product feedback in the Sophos Firewall located in the Top Menu Bar.

You can also log a support case to raise a feature request which you can track it later with your account manager/local sales presentative or TAM.