Good questions. You're right that the behavior is changing, and here's the context:

We're in the process of rolling out CDN infrastructure, which is why the routing path has been shifting. When traffic passes through the CDN layer, X-Real-Ip currently gets set to the CDN edge IP rather than the true client IP. This is a bug on our side that we're tracking to fix.

In the meantime, here's the breakdown:

1. X-Forwarded-For (first/leftmost IP) is the most reliable option right now. Our proxy controls this header, so it accurately reflects the real client IP regardless of which routing path your traffic takes. It's safe to rely on -- clients can send a spoofed X-Forwarded-For, but the real client IP will always be the leftmost entry since our edge proxy appends to the chain.

2. X-Real-Ip will be fixed to always reflect the true client IP regardless of routing path. Right now it's broken when the CDN is active.

3. Fastly-Client-Ip works when the CDN is in the path, but won't be present when it's not, so it's not a stable option to build on.

Recommendation: Use X-Forwarded-For and take the first IP. This will work consistently across both routing paths.

Thank you for the detailed response!

Good to know that X-Forwarded-For[0] is the reliable option for now, and that the X-Real-Ip behavior is a known bug being fixed. I'll switch to X-Forwarded-For in the meantime.