Hello,
We have a Bitbucket Data Center cluster behind a load balancer. When users clone over SSH, the Bitbucket logs see the IP address as the load balancer rather than the user. This is because TCP connections don’t allow a header to forward the client IP and instead just use the load balancer IP. This is troublesome when inspecting the access logs and not being able to associate a user to their IP address.
We have the option of adding the client IP to the TCP packet but Tomcat cannot parse the whole packet without changes being made. Does anyone have a workaround so we can see where our SSH requests are coming from?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.