From 7c111ce2dbd890159ecbf4390313f691303b6981 Mon Sep 17 00:00:00 2001
From: Frank Schroeder <frank.schroeder@gmail.com>
Date: Sun, 18 Feb 2018 22:28:41 +0100
Subject: [PATCH] add note about PROXY protocol

---
 docs/content/feature/access-control.md | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/docs/content/feature/access-control.md b/docs/content/feature/access-control.md
index 0ababa037..90a4a195e 100644
--- a/docs/content/feature/access-control.md
+++ b/docs/content/feature/access-control.md
@@ -45,5 +45,10 @@ present.  When either of these elements match an `allow` the request
 will be allowed; similarly when either element matches a `deny` the
 request will be denied.
 
-For `TCP` requests the originating address of the network socket
+For `TCP` requests the source address of the network socket
 is used as the sole paramater for validation.
+
+If the inbound connection uses the [PROXY protocol](https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt)
+to transmit the true source address of the client then it will
+be used for both `HTTP` and `TCP` connections for validating access.
+