Enabling this causes trusted requests to have the real client IP parsed from HTTP headers (by default,