iRules- Removing the Server- BIGIP header

A question was recently posed to the forums on how to further sanitize the information being passed when redirecting an HTTP request.

 

I use an iRule to redirect HTTP traffic to HTTPS and it works fine, 
...
However I noticed that BigIP adds a "Server: BIG-IP" header in the response, is there a way to remove it ?


Well, due to the fact that this is being redirected, and the way the BIG-IP inserts this header, we have to actually use TCP commands, as bl0ndie pointed out:

 

 

 

when HTTP_REQUEST {
   set my_loc "http://www.i_want_a_bigip_for_christmas.com"
   TCP::respond "HTTP/1.1 302 Found\r\nLocation: $my_loc\r\nConnection: close\r\nContent-Length: 0\r\n\r\n"
   TCP::close
}


So there you have it. It's short and sweet, and useful for anyone trying to mask what's going on in the DMZ to the fullest. You can check out the full posting here.


Code hard,
#CWout

 

 

 

Published Apr 07, 2006
Version 1.0
application delivery
dev
devops
hardware
iRules
security
us

Was this article helpful?

No CommentsBe the first to comment