Forum Discussion

Nimbostratus

Jul 22, 2008

Stripping cookies on the http response

I need to setup an irule to remove one or more cookies on the response back to the client. To start, I'm trying to just delete all cookies by trying this this: when HTTP_...

Nimbostratus

Jul 23, 2008

CMBHATT, thanks for the reply. After speaking to some others, I learned that the "HTTP:cookie remove xxxx would not work with the HTTP_RESPONSE.

I also learned that the Cookie header is sent by clients on a request, and the Set-Cookie header is sent by the server on the response. What I actually needed to do was delete the Set-Cookie on the response.

My code above would have worked fine to delete cookies if I had used http_request

But in order to delete thet Set-Cookie response from the server, this is the code I used which worked great:

when HTTP_RESPONSE {

HTTP::header remove Set-Cookie

}

Thanks again for your effort!

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Stripping cookies on the http response

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

iRule to take cookie from HTTP Response into HTTP Request via table

Introduction of Incident Response

Cookie-based DDoS protection

F5 NGINX API Gateway: Simplify Response Manipulation

Encrypting Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS