Support Support Downloads Knowledge Base Juniper Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[Archive] How to disable the web server HTTP TRACE method on NSMXpress



Article ID: KB14959 KB Last Updated: 10 Oct 2020Version: 4.0

To enhance the security of the web server running on NSMXpress, it is possible to disable the HTTP TRACE method.


Security scanner shows the TRACE method is enabled on NSMXpress.  This method allows debugging and connection trace analysis for connections from the client to the Web server. Per the HTTP specification, when this method is used, the Web server echoes back the information sent to it by the client unmodified and unfiltered.


To disable Trace Method.

  1. Login as admin and enter "sudo su - root" on the NSMXpress system.
  2. Edit with "vi" the /etc/httpd/conf/httpd.conf file
  3. Add the following line at the end of the file:
    TraceEnable off
  4. Restart the httpd process with  "/etc/init.d/httpd restart"  or reboot the appliance.
Modification History:
2020-10-09: Archived article.
2020-09-30: Article reviewed for accuracy; no changes required.
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search