Security Irules 101: Engage Cloak!

Introduction iRules are a powerful tool in the F5 administrators arsenal. They allow administrators to adapt and customize the F5 to their needs. They provide extensive power for securi...

Published Nov 15, 2014

Version 1.0

Nimbostratus

Joined November 08, 2011

View Profile

Simon_Kowallik1

Historic F5 Account

Nov 19, 2012

You can also restrict HTTP Response Headers with the LTM HTTP Profile.

Use the "Response Headers Allowed" flied to specify a whitespace delimeted list of allowed headers. Of course you wouldn't have any logging, but it's faster.

Example:

[root@bigip:Active] config tmsh modify ltm profile http YOUR_HTTP_PROFILE response-headers-permitted add { Accept-Range Cache-Control Content-Encoding Content-Length Content-Type Etag Last-Modified Pragma Set-Cookie }

For documentation see AskF5:

https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm-concepts-11-2-1/ltm_http_profiles.html

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

Security Irules 101: Engage Cloak!

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS