原文:http://blog.csdn.net/yin_jw/article/details/24470131
request.getHeader("X-Forwarded-For")可以獲取透明代理背後的真實ip,但是不能獲取到匿名代理背後的真實ip
可是,如果通過了多級反向代理的話,X-Forwarded-For的值並不止一個,而是一串IP值,
究竟哪個纔是真正的用戶端的真實IP呢?答案是取 X-Forwarded-For中第一個非unknown的有效IP字符串。
如: X-Forwarded-For:192.168.1.110, 192.168.1.120, 192.168.1.130, 192.168.1.100 用戶真實IP爲: 192.168.1.110
下面的方法經過測試,代碼是多餘的,只有getHeader("X-Forwarded-For")有結果,部分原因參考https://segmentfault.com/q/1010000000686700/revision
String ip = request.getHeader("X-Forwarded-For");
System.out.println("代理:"+ ip);
if (ip == null || ip.length() == 0 || "unknown".equalsIgnoreCase(ip)) {
if (ip == null || ip.length() == 0 || "unknown".equalsIgnoreCase(ip)) {
ip = request.getHeader("Proxy-Client-IP");
System.out.println("Proxy-Client-IP - String ip=" + ip);
}
if (ip == null || ip.length() == 0 || "unknown".equalsIgnoreCase(ip)) {
ip = request.getHeader("WL-Proxy-Client-IP");
System.out.println("WL-Proxy-Client-IP - String ip=" + ip);
}
if (ip == null || ip.length() == 0 || "unknown".equalsIgnoreCase(ip)) {
ip = request.getHeader("HTTP_CLIENT_IP");
System.out.println("HTTP_CLIENT_IP - String ip=" + ip);
}
if (ip == null || ip.length() == 0 || "unknown".equalsIgnoreCase(ip)) {
ip = request.getHeader("HTTP_X_FORWARDED_FOR");
System.out.println("HTTP_X_FORWARDED_FOR - String ip=" + ip);
}
}