Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Gorf_33479's avatar
Gorf_33479
Icon for Nimbostratus rankNimbostratus
Oct 31, 2011

HTTP::respond 405 still sends server header

I'm using an iRule to protect some services. One thing I am filtering on is the method. Below is my basic rule. However the problem is that when it does it's thing it doesn't appear to be obe...
application delivery
dev
devops
irules
nitass's avatar
nitass
Icon for Employee rankEmployee
Oct 31, 2011
what version are you running? 

[root@iris:Active] config  b version|grep -iA 1 version
BIG-IP Version 10.2.3 112.0
Final Edition
[root@iris:Active] config  b virtual bar list
virtual bar {
   snat automap
   pool foo
   destination 172.28.17.33:http
   ip protocol tcp
   rules myrule
   profiles {
      http {}
      tcp {}
   }
}
[root@iris:Active] config  b rule myrule list
rule myrule {
   when HTTP_REQUEST {
   HTTP::respond 405
}
}
[root@iris:Active] config  curl -I http://172.28.17.33
HTTP/1.0 405 Method Not Allowed
Server: BigIP
Connection: Keep-Alive
Content-Length: 0

[root@iris:Active] config  b rule myrule list
rule myrule {
   when HTTP_REQUEST {
   HTTP::respond 405 noserver
}
}
[root@iris:Active] config  curl -I http://172.28.17.33
HTTP/1.0 405 Method Not Allowed
Connection: Keep-Alive
Content-Length: 0