HTTP Response: Cookies

HTTP cookies are small files of alphanumeric text that web servers put on web clients. Cookies monitor the page a web client is on, to enable the web server to send more pages in the correct sequence. Web servers also use cookies to collect information about an end user. Many websites use cookies for authentication and other legitimate functions, and cannot operate correctly without cookies.

The HTTP proxy gives you control of the cookies in HTTP responses. You can configure rules to strip cookies, based on your network requirements. The default rule for the HTTP-Server and HTTP-Client proxy action allows all cookies. You can add, delete, or modify rules.

The proxy looks for packets based on the domain associated with the cookie. The domain can be specified in the cookie. If the cookie does not contain a domain, the proxy uses the host name in the first request. For example, to block all cookies for, use the pattern: * If you want to deny cookies from all subdomains on a website, use the wildcard symbol (*) before and after the domain. For example, ** blocks all subdomains of, such as and

Change Settings for Cookies

  1. In the HTTP Proxy Action configuration, select HTTP Response > Cookies.
    The Rules (simple view) list appears.
  2. Configure the rule action.
    For more information, go to Add, Change, or Delete Rules.
  3. To change settings for another category in this proxy, see the topic for that category.
  4. Save the configuration.

If you modified a predefined proxy action, when you save the changes you are prompted to clone (copy) your settings to a new action.

For more information on predefined proxy actions, go to About Proxy Actions.

Related Topics

About the HTTP-Proxy