Inserting X-frame-Options, X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security

Hi,

We have multiple web applications running on a single Virtual server with host/domain based pool routing.

For eg:

red.lab.ae

green.lab.ae

irule:

when HTTP_REQUEST {
switch [string tolower [HTTP::host]] {
red.lab.ae {
pool Red_Pool1 }

green.lab.ae {
pool Green_Pool1 }

}
}

In order  to mitigate the Qualys security scan threat QID 11827,  Please let me know if there is any option to insert the missing security HTTP response headers only for one host name (for eg - to green.lab.ae only) in rule