While doing load balancing we have an opportunity to mitigate vulnerabilities and issues with backend infrastructure. Many data centers run with Microsoft servers and given vulnerabilities can be mitigated on the load balancer while we process the request and parse them for specific patterns. Apply this to the "HTTP REQUEST" Event. This is only datascript example, the functionality below can be done through HTTP Policies framework or WAF as well.
-- HTTP_REQUEST
-- remove Range requests for CVE-2015-1635 if the request uses large ranges
range_header = avi.http.get_header("Range")
if range_header and string.find(range_header, "bytes%s*=.*%d%d%d%d%d%d%d%d%d%d.*") then
avi.http.remove_header("Range")
avi.vs.log("Removed: 'Range header : " .. avi.vs.client_ip() .. "'")
end