Windows server 2012 + IIS, how to set up to remove the page header CURR_SERVER_IP? Thank you very much!

CodePudding user response:

CURR_SERVER_IP don't like is the standard/common web page first,

You can check the service program code, first search where there are "CURR_SERVER_IP",
If not, check whether there are inverse proxy (front agent), whether to have the load balancer, whether some front CURR_SERVER_IP head is introduced,

CodePudding user response:

You are the receiver, how can get rid of the sender's data, is receiving the most then delete this message request header

CodePudding user response:

First of all, we just look at this field... Obviously not "official standard" so basic can conclude that the background (server) their own return

Then again see below ng so basic can be determined. The. The web site asp.net use the ng to do the reverse proxy. And this field returns the current site's IP and port is..

So from you are you change not to drop the iis level. You have to find network personnel in the ng level. Remove the this.

But I'm curious, this is a general practice.. Which server can see the request received. But why do you want to remove?

It seems not to have any influence for you?

CodePudding user response:

Thank you by_ love, in the IIS layer for two days, change application, rewrite, will solve the problem, it seems to be in ng level to solve the problem, why do you want to remove: is penetration testing requirements to remove, exposed the network IP address,