does otlpreceiver support http headerX-Forwarded-For?
#4901
Comments
|
On the receiver configuration, you have to enable the include_metadata attribute: opentelemetry-collector/config/confighttp/confighttp.go Lines 220 to 222 in 4998703 This doesn't seem to be documented, would you mind opening a PR documenting it? |
|
I'm actually having a similar problem. I have enabled include_metadata in the yaml configuration file for otlp http protocol (see snippet below) which is running version 0.45.0 of the collector, but I do not set the http.client_ip address being set. I've included a wireshark snippet where you can see the X-Forwared-For from the reverse proxy. Yaml receiver snippet:receivers:
Wireshark snippet:... |
|
I enabled receivers:
otlp:
protocols:
http:
include_metadata: true
cors:
allowed_origins:
- "http://localhost*"
allowed_headers:
- "*" |
|
Sorry, my information was incomplete. We do need an example, and I'm not sure we have all the pieces at this moment, but you need to enable this and use the attribute processor with a "from_context" setting: https://github.com/open-telemetry/opentelemetry-collector-contrib/tree/main/processor/attributesprocessor#attributes-processor |
|
Thanks, that was the missing link. We didn't need the allowed_headers in the end. Final snippet from the yaml file is below. Thanks for all the help receivers:
jaeger:
protocols:
grpc:
thrift_binary:
thrift_compact:
thrift_http:
otlp:
protocols:
grpc:
include_metadata: true
http:
cors:
allowed_origins:
- "http://localhost*"
include_metadata: true
zipkin:
exporters:
jaeger:
endpoint: "jaeger-Development:14250"
tls:
insecure: true
logging:
zipkin:
endpoint: "http://zipkin:9411/api/v2/spans"
processors:
attributes/rp:
actions:
- key: http.client_id
from_context: X-Forwarded-For
action: upsert
batch:
extensions:
health_check:
pprof:
zpages:
service:
extensions: [pprof, zpages, health_check]
pipelines:
traces:
receivers: [otlp, zipkin]
exporters: [jaeger, logging]
|
|
Would you mind adding appropriate documentation here: https://github.com/open-telemetry/opentelemetry-collector/tree/main/config/confighttp |
|
Thanks for all the help. OK I'll opening a PR documentation it |
|
So, it occurred to me last night this solution wasn't really going to work as X-Forwarded-For header can have multiple IP addresses seperated by comma followed by a space (see https://en.wikipedia.org/wiki/X-Forwarded-For) if multiple proxy servers and/or load balancers are in use. To handle this I have changed the solution to below which will note both X-Forwarded-For, but should only set http.client_id to the first IP address from the header. receivers:
jaeger:
protocols:
grpc:
thrift_binary:
thrift_compact:
thrift_http:
otlp:
protocols:
grpc:
include_metadata: true
http:
cors:
allowed_origins:
- "http://localhost*"
include_metadata: true
zipkin:
exporters:
jaeger:
endpoint: "jaeger-Development:14250"
tls:
insecure: true
logging:
zipkin:
endpoint: "http://zipkin:9411/api/v2/spans"
processors:
attributes/rp:
actions:
# Note the X-Forwarded-For header.
- key: http.x_forwarded_for
from_context: X-Forwarded-For
action: upsert
# Extract the client IP address from X-Forwarded-For, note cannot use colon in key name so storing in placeholder http_client_ip.
- key: http.x_forwarded_for
pattern: ^(?P.*),*
action: extract
# Turn the captured client IP address from placeholder into the standard attribute format http.client_ip.
- key: http.client_ip
from_attribute: http_client_ip
action: upsert
# Remove placeholder http_client_ip.
- key: http_client_ip
action: delete
batch:
extensions:
health_check:
pprof:
zpages:
service:
extensions: [pprof, zpages, health_check]
pipelines:
traces:
receivers: [otlp, zipkin]
exporters: [jaeger, logging]
processors: [attributes/rp, batch]
|
|
That's great. but I prefer to store it into DB process it using SQL |
|
That was something we were debating about this morning before we came to this solution. For us to simplify the elastic search queries having the http.client_id value stored in the database in a consistent manner regardless of multiple proxy servers, routers, load balancers (or even none in simple setups) was more important to simplify diagnostics and support, but I can certainly see why you would take your suggested approach. |
|
Well, just noticed that I specified http.client_id and NOT http.client_ip which is the standard. Corrected the example above, but here it is again below: receivers:
jaeger:
protocols:
grpc:
thrift_binary:
thrift_compact:
thrift_http:
otlp:
protocols:
grpc:
include_metadata: true
http:
cors:
allowed_origins:
- "http://localhost*"
include_metadata: true
zipkin:
exporters:
jaeger:
endpoint: "jaeger-Development:14250"
tls:
insecure: true
logging:
zipkin:
endpoint: "http://zipkin:9411/api/v2/spans"
processors:
attributes/rp:
actions:
# Note the X-Forwarded-For header.
- key: http.x_forwarded_for
from_context: X-Forwarded-For
action: upsert
# Extract the client IP address from X-Forwarded-For, note cannot use colon in key name so storing in placeholder http_client_ip.
- key: http.x_forwarded_for
pattern: ^(?P.*),*
action: extract
# Turn the captured client IP address from placeholder into the standard attribute format http.client_ip.
- key: http.client_ip
from_attribute: http_client_ip
action: upsert
# Remove placeholder http_client_ip.
- key: http_client_ip
action: delete
batch:
extensions:
health_check:
pprof:
zpages:
service:
extensions: [pprof, zpages, health_check]
pipelines:
traces:
receivers: [otlp, zipkin]
exporters: [jaeger, logging]
processors: [attributes/rp, batch]
|
The pattern was wrong. Should be: Regards, Sascha |
|
Here is the correct regex: |
I send traces data from web to otlpreceiver http port 55681, the http request header has
X-Forwarded-Forattribute. but the receiver not auto appendhttp.client_ipattribute to traces spans.how I add client ip?
version:
[v0.44.0](https://github.com/open-telemetry/opentelemetry-collector/releases/tag/v0.44.0)The text was updated successfully, but these errors were encountered: