Forum Discussion
Brian_Kenworthy
May 09, 2013Nimbostratus
Hi Steve, thanks for the reply. I am not using HTTP::respond in any other rules on the virtual server. I was wondering if I could add it to this rule? I am also thinking about just moving the allowed headers into an HTTP profile to eliminate this rule altogether. If I do that, could I use a simple HTTP::Respond rule to remove that BigIP header?
What I have obsered is that this header appears when you just hit the URL via HTTP since we have an irule that redirects to HTTPS so I think it stripping the BigIP header really only needs to happen on the HTTP virtual server, would you agree with that? This all came about via Qualys vulnerability scans that we are doing...