Security Irules 101: Engage Cloak!

Introduction iRules are a powerful tool in the F5 administrators arsenal. They allow administrators to adapt and customize the F5 to their needs. They provide extensive power for securi...
Published Nov 15, 2014
Version 1.0
adn
application delivery
dev
devops
iRules
irules101
news
security
tech tip

Was this article helpful?

jwham20's avatar
jwham20
Icon for Nimbostratus rankNimbostratus
Nov 26, 2012
There is also the HTTP::header sanitize command, which provides a built in method for the sanitization of headers.

 

 

https://devcentral.f5.com/wiki/irules.HTTP__header.ashx

 

 

These are all great examples of Positive Enforcement (whitelist models).

 

 

We could reverse this and create a general blanket Negative Security model, saying that no matter the application, we never want to see the server header leave our environment.