Forum Discussion

Nimbostratus

Apr 23, 2012

HTTP_Response Client side

Hi Ive been looking to write and Irule to strip out the HTTP::Header for all "Server" types but have been unable to get this work. Essentially it works perfectly server side, but when a user ini...

Nimbostratus

Apr 24, 2012

Firstly thank you for taking the time and interest in my post and also replying.

I certainly look at both suggestions today and realised that maybe I wasnt that clear.

I essentially want to stop clients (client side) seeing any info about the F5 itself but specifically the server type in the http header.

When a client connects to the vip without the fully qualified URL they see the f5 landing page thus exposing the F5 to any wouldbe attacker.

Hope this makes more sense.

Jon

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

HTTP_Response Client side

Recent Discussions

MAC address of deleted VS IP address still responsive

Different common name ssl acces 403 forbiddent

dynamic signature detection

DNS HM Probe issue

F5 looses the token for the first call

Related Content

Enhance your Application Security using Client-side signals – Part 2

Client-side vs Server-side Load Balancing

Server Side Profile not show the certificate

iRule to hide URI from client side

Upgrade APM edge client

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS