Using the ISA HTTP Filter To Modify Via Headers And Prevent Information Disclosure
One feature that perhaps doesn’t get enough attention is the HTTP Security Filter. The HTTP Security Filter is included with both ISA and TMG firewalls and can be configured on a per Web Publishing Rule basis. The HTTP Security Filter allows you to control many aspects of the HTTP communication between the source and destination for both inbound and outbound connections.
When configuring the HTTP Security Filter for inbound connections, you can take advantage of the settings on the Headers tab. One useful implementation is to configure the Server Header and the Via Header returned by the ISA or TMG firewall.
Want to know how to do it? Then check out Richard Hicks’ blog over at
and get the details.
Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer