We are whitelisting IP address ranges to access our website in CF11 for my client. Every time the user hits the site my code will pull the IP address using HTTP.REMOTE_ADDR. Once the user hits our site , there are some real IP address coming in, which does not belongs to my or my clients network. While I was checking those IP it belongs to some ISP providers. So this restricts my users to access the site as it is not included in our whitelisting. Our CF server is not a proxy or load balancer. Even I tried to check if it is re-routing using CGI.HTTP_X_Forwarded_For. But it was not. Please help me to know if incoming new real IP address can be controlled in our web server or in CF server? Or is there a way for the client to control these incoming IP address?
I think it would help for you to clarify things:
Again, if you clarify things better, perhaps we may be able to offer better answers for you. Or someone may respond without considering what I've written, and they may have some entirely different answer (or the same questions) for you.