Additional client IP addresses

A client may exhibit behaviour where multiple IP addresses are received as part of the authentication request, including:

Round-robin CGNat masquerading for stateless protocols
Varying source IP addresses for stateful (eg: SSH, RDP) protocols versus stateless (eg: HTTP/HTTPS or ports such as 443/tcp)

Another example may be where a Knocknoc Server is hosted and directly accessible via an internal (eg: RFC1918, 192.168.x) IP address, but you want certain ACLs to receive the external IP address - not just the internal address.

Knocknoc has support for this within the ACL structure via the "Include additional IP addresses" option.