Eric CapuanoPro tip for network & system admins... If you have a load balancer set up in front of your web-facing servers (like OWA, etc), please consider enabling the X-Forwarded-For header to make log analysis easier during the inevitable IR. This header captures the actual source IP of the request and passes it to the backend server, despite the traffic appearing to come from the load balancer's IP. #infosec #DFIR
J. R. DePriest 
:EA DATA. SF:@eric_capuano Did they try to tell you that not setting X-Forwarded-For was more secure? That's always fun.
Chris Elgee@jrdepriest @eric_capuano If you try hard enough, you can make XFF a vulnerability (e.g., trust if forwarded from X internal system). Just... don't do that. You'll be fine. (-: