search cancel

Disable the IIS Response Headers for Network Flow Analysis

book

Article ID: 213361

calendar_today

Updated On:

Products

CA Network Flow Analysis (NetQos / NFA)

Issue/Introduction

This article explains how to configure the Internet Information Services (IIS) for NFA Console to prevent the display of Web Server version information leak in HTTP response headers.

Environment

Network Flow Analysis

Resolution

Works for IIS 7+ versions (IIS 7, 8.5, 8.0, 8.5, IIS 10.0)

  1. Launch IIS manager à window + r to open run , then type Inetsrv and press ok to open IIS manager.
  2. Locate the IIS feature section and click on the icon for URL Rewrite.

If URL Rewrite module is not available under features then download the URL Rewrite from microsite site https://www.iis.net/downloads/microsoft/url-rewrite and run the extension.

Once extension is installed, URL Rewrite icon will start appearing.

 

  1. Open URL Rewrite, it will have two sections one for Inbound rules and other for outbound rules.

 

We need to add a rule in the outbound section. Right-click into the outbound section to open the context menu and select Add Rule(s)…

 

  1. Select Blank rule from the Outbound rules section:

 

  1. The rule needs a few values, that can be provided like the way provided in the below screenshot.

 

  1. After applying the outbound rule, Server header will be emptied in response.

Incase still Server response value is still coming, restart the IIS once.

 

Attachments