Discard or reject clientside connection from HTTP_RESPONSE event?

Question

Hello,
I'm trying to discard or reject a clientside connection from the HTTP_RESPONSE event (if a specific header isn't found in the server response).  That wasn't working, so I simplified the rule down to:
when HTTP_RESPONSE {
   clientside {reject}
}
When testing with CURL or a browser as a client, I see the BIG-IP send back a packet with an HTTP 200 response (the node response) and then reset the connection to the server and then the client in the next packets.
Is this expected behavior?  Is there a way to not send back any response to the client and just reset the TCP connection?
I'm testing this on 9.2.3.  I attached a tcpdump showing the HTTP 200 response to the client followed by a reset.
Thanks,
Aaron

colin_walker_12 · Answer

I'd try using discard instead of reject, and then closing the connection manually with something like TCP::close&nbsp;
&nbsp;HTH,
&nbsp;Colin

Forum Discussion

Discard or reject clientside connection from HTTP_RESPONSE event?

Recent Discussions

Statistics ›› Analytics : HTTP : Overview

VS FORWARDING & ROUTE

Diameter iRules attachment?

Source IP F5 DNS Zone Forwarder

F5 BIG-IP

Related Content

err tmm1[24399]: 011f0007:3: http_process_state_prepend - Invalid action:0x107041 clientside

Site-to-Site Connectivity in F5 Distributed Cloud Network Connect – Reference Architecture

Securely connecting Kubernetes Microservices with F5 Distributed Cloud

AWS Transit Gateway Connect: GRE + BGP = ?

DevCentral Connects hosts Capture the Flag!

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS