@hrefna I think by default any sort of software doesn't get built with an expectation that the origin IP will not be leaked. You can't really enforce that easily unless you're in control of the entire deployment stack.
For example, I create forum software for others to deploy. I can ask they they run all their outgoing requests through a proxy, but I can't enforce that.