Forum Discussion

Nimbostratus

Jul 24, 2023

Remove all Cookies incase based on specific condition

We've a requimrent to flush all cookies from the user session incase a user deleted one cookie from client browser. why such request, our web servers have some security restrictions to have both coo...

application delivery

security

whisperer

MVP

Jul 25, 2023

Wrong approach. You need to instruct the web browser to invalidate the cookie. Take a look ar the following thread:

https://community.f5.com/t5/technical-forum/irule-delete-cookie-value-on-a-302-redirect/td-p/82205

In your iRule example, you are only stripping the cookie from being passed between the client and the F5. The cookie would still reside on the client machine.

Abdulaziz1
Nimbostratus
Jul 26, 2023
could you plz post a sample irule as a guidance, as this kind of irules is new to us

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Remove all Cookies incase based on specific condition

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Problems connecting to vpn after upgrading to ubuntu 24.04

How can I run the ‘Network Map’ feature from the CLI or how can I view this information?

SSLO Policy Condition - Server Certificate (Issuer DN)

f5 client certificate forwarding

How to configure pool to go down if multiple members are down

Related Content

Conditional XOR operations

APM-Specific Features for Securing Your Website

Intermediate iRules: Nested Conditionals

Cookie-based DDoS protection

2. SYN Cookie: Operation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS