Summary

Currently these options are not available in the CLI, adding these feature would greatly help:

1. Insert an X-Forwarded-For HTTP header
2. Persistence methods (in particular, SSL Session ID)
3. HTTP health check on SSL passthrough encrypted traffic (where vyos does not decrypt/encrypt the live traffic).
4. Custom interval for the TCP port health check
5. Support TCP multiplexing to the backend servers?

Use case

• Inserting the X-Forwarded-For header allows the backend servers to log or act upon the real client IP address.
• Ensures that a client’s subsequent requests are routed to the same backend server.
• Allows tuning how frequently the proxy checks the health of backend servers( currently it seems to check every 2 seconds).
• TCP multiplexing will allow the proxy to reuse a single TCP connection to the backend for multiple client sessions