Dear Members,
We have enabled reverse proxy and confugured internal proxies in server.xml in SASServer1_1 JVM's.
However, we are notifying by security team that, HTTP headers are missing on ports 8443, we have configured 8443 port for SASServer1_1 JVM as bio.https.port.
We have two web servers configured under F5 load balancer and still we use webservers to redirect the traffic.
If i implement this under server.xml file would resolve this issue
<Valve
className="org.apache.catalina.valves.RemoteIpValve"
internalProxies="(fe80|fd[0-9a-fA-F]{2})(:{1,2}[0-9a-fA-F]{0,4})
{0,7}(%[0-9a-zA-Z]+)?$|::1|10\.\d{1,3}\.\d{1,3}\.\d{1,3}|192\.168\.\d
{1,3}\.\d{1,3}|169\.254\.\d{1,3}\.\d{1,3}|127\.\d{1,3}\.\d{1,3}\.\d{1,3}|
172\.1[6-9]{1}\.\d{1,3}\.\d{1,3}|172\.2[0-9]{1}\.\d{1,3}\.\d{1,3}|172\.3[0-
1]{1}\.\d{1,3}\.\d{1,3}" trustedProxies="###\.###\.###\.###"
protocolHeader="X-Forwarded-Proto"/>
Any inputs in remediating the problem is highly appreciated. Thanks in Advance.