Configure range-based IP spoofing

Note: Range-based IP spoofing is not supported for IPv6.

When the proxy is configured to use range-based IP spoofing:

  • Client IP address ranges and their corresponding spoofed IP address are specified in a table.
  • The table is traversed top-down. The first match is applied.
  • Requests from clients that do not match an IP address in the table are spoofed with their own IP address (basic IP spoofing).
  • To create an entry that causes a set of IP addresses to appear to be coming from the proxy (as in ordinary forward proxy request handling), specify the desired client IP address range and then use the Spoofed IP Address field to specify the proxy’s Internet-facing IP address.
  • Create the smallest list that meets your needs. The list is traversed for every connection request. A very large list could contribute to latency. Use the Content Gateway manager performance charts (Monitor > Performance) to monitor proxy performance.