Forum Discussion

Nimbostratus

Jan 26, 2007

Checking if cookie exists on HTTP_RESPONSE

Good Morning- We're looking to remove Apache servers from our DMZ in favor of other technologies (not apache based). However, we do unique user tracking with MOD_TRACKING in apache that inserts a...

Nimbostratus

Jan 27, 2007

If I understood correctly, you want to set the cookie if it isn't found in the request received from the user. What you're actually doing is checking whether it is present in the response being sent back from the server, which, of course, it never is.

You should check for the existence of the cookie in the HTTP_REQUEST event, not HTTP_RESPONSE. What you want is most likely this:

when HTTP_REQUEST {
  set isset [HTTP::cookie exists {trackcookie}]
}
when HTTP_RESPONSE {
  if {$isset == 0} {
    HTTP::cookie insert name {trackcookie} value "[IP::client_addr]-[clock seconds]" path {/} domain {.mydomain.com}
    HTTP::cookie expires {trackcookie} 3000 relative
  }
}

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Checking if cookie exists on HTTP_RESPONSE

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

How to configure ssh access by key on F5OS

F5 BIG-IP DNS/Audit Logs — Structured Format for SIEM Ingestion

Bot Defense causing a lot of false positives

Recommendation for Adv. Lab

Related Content

BIG-IP security hardening and compliance checks

APM checking for URI

Cookie-based DDoS protection

Encrypting Cookies

2. SYN Cookie: Operation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS